all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How is malware, specifically XMRig, hidden in Docker images?

Add to bookmarks
Sept. 15, 2023, 11:25 p.m. | /u/platypus_plumba

cybersecurity www.reddit.com

I'm not in the cybersecurity field, I'm just curious about how these miners are hidden in the Docker images that we pull from Dockerhub.

My initial guess was that some of the binaries in the image are tampered with to hide the processes being executed, for example tampering "ps" or "ls". But this seemed like a pointless approach because the user could install other tools that would reveal the processes.

I don't want to list my whole noob thought process …

cybersecurity docker dockerhub hidden hide image images malware miners processes tampering xmrig

Visit resource

More from www.reddit.com / cybersecurity

Need to vent. Mantrap to be used as auxiliary office… 10 hours ago | www.reddit.com
cybersecurity intern key leadership +7
Router Roulette: Cybercriminals and Nation-States Sharing Compromised Networks 10 hours ago | www.reddit.com
compromised cybercriminals cybersecurity nation +6
Attackers Planted Millions of Imageless Repositories on Docker Hub 11 hours ago | www.reddit.com
attackers cybersecurity docker docker hub +3
Fortify SCA vs SonarQube for SAST 13 hours ago | www.reddit.com
assessment cybersecurity fortify opinion +4
Where can I find a list of vulnerabilities by software providers? 13 hours ago | www.reddit.com
alerts breaches can cve +22
AI Code Assistants and Cybersecurity Risk: 3 Recent Findings 13 hours ago | www.reddit.com
code cybersecurity cybersecurity risk findings +1
London Drugs stores remain closed after 'cybersecurity incident' 14 hours ago | www.reddit.com
cybersecurity cybersecurity incident drugs incident +2
Another major pharmacy chain shuts following possible cyberattack 17 hours ago | www.reddit.com
cyberattack cybersecurity major pharmacy
Cyber security career progression hive-mind 1 day, 1 hour ago | www.reddit.com
america career career progression coming +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Security Engineer II- Full stack Java with React

@ JPMorgan Chase & Co. | Hyderabad, Telangana, India
View on infosec-jobs.com

Cybersecurity SecOps

@ GFT Technologies | Mexico City, MX, 11850
View on infosec-jobs.com

Senior Information Security Advisor

@ Sun Life | Sun Life Toronto One York
View on infosec-jobs.com

Contract Special Security Officer (CSSO) - Top Secret Clearance

@ SpaceX | Hawthorne, CA
View on infosec-jobs.com

Early Career Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com
View more jobs