Aqua reports that more than 350 publicly-accessible Kubernetes clusters have been discovered, with 60% of them being the target of an active crypto-mining campaign.
The attackers exploit two different kinds of misconfiguration — allowing anonymous access with high privileges and running a proxy with the flags ‘accept-hosts`.
A closer examination of the clusters has revealed three different ongoing campaigns aimed at mining cryptocurrency, including Dero cryptojacking, RBAC Buster, and TeamTNT’s Silentbob.
Despite the severe security implications, such misconfigurations are prevalent across organizations, irrespective of their size, indicating a gap in the understanding and management of Kubernets security, the researchers said.
Aqua warns that malicious actors exploit these vulnerabilities to mine cryptocurrency and other cryptocurrencies.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply