Illicit crypto-miners pouncing on insecure DevOps tools • The Register
Up to a quarter of all cloud users are at risk of having their computing resources stolen and used to illicitly mine for cryptocurrency, after crims cooked up a campaign that targets publicly accessible DevOps tools.
Wiz Threat Research spotted the campaign and attributed it to an attacker it named JINX–0132, which it says exploits misconfigurations and vulnerabilities in multiple applications to deploy mining software.
JINX–0132 targets a “wide range” of DevOps tools, but Wiz thinks it prefers HashiCorp’s Nomad and Consul tools, plus Docker API and Gitea.
According to threat researchers Gili Tikochinski, Danielle Aminov and Merav Bar, Wiz data indicates…
