Kinsing crypto mining campaign targets 75 cloud-native applications | allinfosecnews.com

May 8, 2024, 6 a.m. |

CSO Online www.csoonline.com

An attack campaign dubbed Kinsing that targets cloud-native environments to deploy cryptocurrency mining malware is still going strong after five years, according to a research report by cloud security firm Aqua Security

The threat actors behind the operation compromise publicly facing servers by exploiting remote code execution vulnerabilities and misconfigurations in 75 web applications and container systems such as Docker and Kubernetes.

While Kinsing is not a new attack campaign and security companies have written many detailed analyses about its …

applications aqua aqua security attack campaign cloud cloud-native cloud-native applications cloud-native environments cloud security code code execution compromise crypto cryptocurrency cryptocurrency mining cryptocurrency mining malware crypto mining deploy environments exploiting facing kinsing malware mining misconfigurations remote code remote code execution remote code execution vulnerabilities report research security servers threat threat actors vulnerabilities

More from www.csoonline.com / CSO Online

Spam blocklist SORBS shuts down after over two decades 2 days, 3 hours ago | www.csoonline.com

antispam blocklist current decision +15

New RansomHub ransomware gang has ties to older Knight group 2 days, 7 hours ago | www.csoonline.com

called cyclops gang hacker groups +14

Whitelisting explained: How it works and where it fits in a security program 2 days, 14 hours ago | www.csoonline.com

actions application security attackers block +23

How Amazon CISO Amy Herzog responds to cybersecurity challenges 2 days, 17 hours ago | www.csoonline.com

advertising amazon amy business +20

FBI offers to share 7,000 LockBit ransomware decryption keys with CISOs 3 days, 5 hours ago | www.csoonline.com

can cisos corporate data +13

Download our password managers enterprise buyer’s guide 3 days, 8 hours ago | www.csoonline.com

can cso download enterprise +11

Complaints in EU challenge Meta’s plans to utilize personal data for AI 3 days, 9 hours ago | www.csoonline.com

action advocacy ai models called +18

What CISOs need to know about Microsoft’s Copilot+ 3 days, 17 hours ago | www.csoonline.com

artificial artificial intelligence bundle called +16

Long-running Chinese cyberespionage operation targeted Southeast Asian government 4 days, 1 hour ago | www.csoonline.com

actor advanced persistent threats asia attackers +25

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States

View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States

View on infosec-jobs.com