all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hackers Employing New Techniques To Attack Docker API

Add to bookmarks
June 17, 2024, 7:53 a.m. | Guru baran

GBHackers On Security gbhackers.com

Attackers behind Spinning YARN launched a new cryptojacking campaign targeting publicly exposed Docker Engine hosts by using new binaries chkstart (remote access with payload execution), exeremo (lateral movement through SSH), and vurld (Go downloader for malware retrieval) and a persistence mechanism that modifies systemd services with ExecStartPost for malicious commands.  It targets Docker API endpoints […]


The post Hackers Employing New Techniques To Attack Docker API appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform …

access api attack attackers campaign commands cryptocurrency hack cryptojacking cyber-attack docker docker engine docker security downloader engine exposed hackers hosts lateral lateral movement malicious malicious commands malware malware analysis mechanism payload persistence remote access services ssh systemd system persistence targeting techniques using yarn

Visit resource

More from gbhackers.com / GBHackers On Security

OilRig Hackers Attacking Individuals And Organizations In The Middle East an hour ago | gbhackers.com
advanced advanced persistent threat (apt) attacks campaigns +23
Ollama AI Platform Flaw Let Attackers Execute Remote Code an hour ago | gbhackers.com
access ai platform ai security algorithms +23
P2Pinfect Redis Server with New Ransomware Payload an hour ago | gbhackers.com
article botnet capabilities crypto +15
New North Korean Actor Distributing Malicious npm Packages To Compromise Organizations 3 hours ago | gbhackers.com
actor compromise cve cyber-attack +28
Threat Actor Claims 0Day Sandbox Escape RCE in Chrome Browser 3 hours ago | gbhackers.com
0day account actor attention +20
FireTail Unveils Free Access for All to Cutting-Edge API Security Platform 4 hours ago | gbhackers.com
access api apis api security +25
Microsoft Announced Copilot for Security TI in Defender XDR 6 hours ago | gbhackers.com
access ai-powered availability copilot +23
Critical Vulnerability in MOVEit Transfer Let Hackers Gain Files Access 8 hours ago | gbhackers.com
access authentication can critical +24
Beware Of Shorten URLs With Word Files That Install Remcos RAT 1 day ago | gbhackers.com
access access trojan attackers can +17

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Vice President, Controls Design & Development-7

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Vice President, Controls Design & Development-5

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Data Scientist & AI Prompt Engineer

@ Varonis | Israel
View on infosec-jobs.com

Contractor

@ Birlasoft | INDIA - MUMBAI - BIRLASOFT OFFICE, IN
View on infosec-jobs.com