all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

The Discovery of a Massive Cryptomining Operation Leveraging GitHub Actions

Add to bookmarks
c
Jan. 13, 2023, 12:51 a.m. |

Cloud Security Alliance cloudsecurityalliance.org

Originally published by Sysdig on October 25, 2022. Written by Crystal Morin, Sysdig. The Sysdig Threat Research Team (Sysdig TRT) recently uncovered an extensive and sophisticated active cryptomining operation in which a threat actor is using some of the largest cloud and continuous integration and deployment (CI/CD) service providers; including GitHub, Heroku, Buddy.works, and others to build, run, scale, and operate their massive cloud operation. Because no one has yet reported on this act...

actions actor build cloud continuous continuous integration cryptomining crystal deployment discovery github github actions heroku integration october research run scale service service providers sysdig team threat threat actor threat research

Visit resource

More from cloudsecurityalliance.org / Cloud Security Alliance

Cl
AI Hallucinations: The Emerging Market for Insuring Against Generative AI's Costly Blunders 3 days, 15 hours ago | cloudsecurityalliance.org
ai governance ai hallucinations blog chair +16
Cl
Why Business Risk Should be Your Guiding North Star for Remediation 3 days, 15 hours ago | cloudsecurityalliance.org
adoption agile attack attack surface +19
Cl
Upselling Cybersecurity: Why Baseline Security Features Shouldn’t Be a Commodity 3 days, 15 hours ago | cloudsecurityalliance.org
accountability advisory barr advisory consulting +23
Cl
Breach Debrief: The Fake Slackbot 1 week ago | cloudsecurityalliance.org
abusing adaptive shield breach design +15
Cl
Understanding the Nuances: Privacy and Confidentiality 1 week ago | cloudsecurityalliance.org
age american businesses clients +19
Cl
What’s in a Name? Defining Zero Trust for Leaders 1 week ago | cloudsecurityalliance.org
analyst board business concept +17
Cl
Are You Ready for Microsoft Copilot? 1 week ago | cloudsecurityalliance.org
ai chatbot chatbot copilot customers +13
Cl
Implementing a Data-Centric Approach to Security 1 week ago | cloudsecurityalliance.org
access access governance can cto +13
Cl
Cloud Security Alliance (CSA) AI Summit at RSAC to Deliver Critical Tools to Help Meet … 1 week, 2 days ago | cloudsecurityalliance.org
advice alliance april benefits +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

IT Security Manager

@ Teltonika | Vilnius/Kaunas, VL, LT
View on infosec-jobs.com

Security Officer - Part Time - Harrah's Gulf Coast

@ Caesars Entertainment | Biloxi, MS, United States
View on infosec-jobs.com

DevSecOps Full-stack Developer

@ Peraton | Fort Gordon, GA, United States
View on infosec-jobs.com

Cybersecurity Cooperation Lead

@ Peraton | Stuttgart, AE, United States
View on infosec-jobs.com

Cybersecurity Engineer - Malware & Forensics

@ ManTech | 201DU - Customer Site,Herndon, VA
View on infosec-jobs.com
View more jobs