Close Menu
  • Latest News
    • Market
    • Altcoins
    • Legal and Regulatory
  • Tech
    • Blockchain
    • Security and Privacy
  • Web 3
    • Web3 News
    • NFTs
    • Gaming
  • Learn
    • Education
    • Investments
    • Staking
    • Wallets and Exchanges
  • ICOs
  • Mining
  • Crypto Tools
    • Exchange Tool
  • Shop
What's Hot

Can KAITO sustain its 13% rally before $14.9mln token unlock?

July 17, 2026

What Happens If Your Exchange Isn’t Approved

July 17, 2026

How Malicious Liquidity Pools Are Trick-Quoting Ethereum and Polygon Users

July 17, 2026
Facebook X (Twitter) Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
Facebook X (Twitter) Instagram
CryptoPulseDaily.com
  • Latest News
    • Market
    • Altcoins
    • Legal and Regulatory
  • Tech
    • Blockchain
    • Security and Privacy
  • Web 3
    • Web3 News
    • NFTs
    • Gaming
  • Learn
    • Education
    • Investments
    • Staking
    • Wallets and Exchanges
  • ICOs
  • Mining
  • Crypto Tools
    • Exchange Tool
  • Shop
CryptoPulseDaily.com
Home»Security and Privacy»Docker Users Targeted with Crypto Malware Via Misconfigured APIs
Docker Users Targeted with Crypto Malware Via Misconfigured APIs
Security and Privacy

Docker Users Targeted with Crypto Malware Via Misconfigured APIs

July 28, 2023No Comments2 Mins Read
Share
Facebook Twitter LinkedIn Pinterest Email

Hackers are attempting to compromise Docker servers en masse via exposed APIs in order to spread cryptocurrency mining malware, according to researchers.

Aqua Security claimed to have tracked the organized campaign for several months, revealing that thousands of attempts to hijack misconfigured Docker Daemon API ports are taking place almost every single day.

“In this attack, the attackers exploit a misconfigured Docker API port to run an Ubuntu container with the kinsing malicious malware, which in turn runs a cryptominer and then attempts to spread the malware to other containers and hosts,” it explained.

The Ubuntu container itself is designed to disable security measures and clear logs, and kills applications on the system including any other malware, as well as downloading the kinsing malware designed to mine for digital currency on the compromised Docker host.

Once kinsing is downloaded it tries to connect with C&C servers in Eastern Europe, with a different server used for each function. It then attempts to spread laterally across the container network, by collecting and using SSH credentials.

“Using the information gathered, the malware then attempts to connect to each host, using every possible user and key combination through SSH, in order to download the aforementioned shell script and run the malware on other hosts or containers in the network,” said Aqua Security.

The cryptominer itself, kdevtmpfsi, is designed to mine for Bitcoin.

DevSecOps teams must up their response to run least privilege access policies, scan images, look for anomalies in user behavior and invest in cloud security tools to enforce policies, argued the vendor.

See also  14 Suspected South Korean ‘Kimchi Premium’ Crypto Traders Cleared

Containers are increasingly on the front line when it comes to enterprise cyber-threats. Last year researchers found over 40,000 misconfigured Kubernetes and Docker containers online.

It’s not all about user error; in April 2019 Docker Hub, the world’s largest container image library, discovered unauthorized access to its platform affecting 190,000 accounts.

Source link

APIs Crypto Docker Malware Misconfigured Targeted users
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

How Malicious Liquidity Pools Are Trick-Quoting Ethereum and Polygon Users

July 17, 2026

Which Crypto Companies and Protocols Make The Most Money?

July 17, 2026

FATF urges faster crypto AML enforcement as stablecoin crime increases

July 17, 2026

$1.9 trillion asset manager T. Rowe Price bets on active management with first multi-token crypto ETF

July 16, 2026
Add A Comment
Leave A Reply Cancel Reply

Top Posts

MiamiWeb3: A Bridge for Gathering All-hands to Build the Future of Web3

May 26, 2023

Hong Kong Plans To Promote Responsible Development Of Web 3.0 With Blockchain

June 11, 2023

WazirX CEO advises withdrawals amid ownership dispute and hack aftermath

August 28, 2024

Subscribe to Updates

Get the latest creative news From Crypto Daily Pulse directly in your Inbox!

Our mission is to develop a community of people who try to make financially sound decisions. The website strives to educate individuals in making wise choices about Crypto, ICOs, Web3, Blockchain and more.

We're social. Connect with us:

Facebook X (Twitter) Instagram Pinterest YouTube
Top Insights

Can KAITO sustain its 13% rally before $14.9mln token unlock?

July 17, 2026

What Happens If Your Exchange Isn’t Approved

July 17, 2026

How Malicious Liquidity Pools Are Trick-Quoting Ethereum and Polygon Users

July 17, 2026
Get Informed

Subscribe to Updates

Get the latest creative news From Crypto Daily Pulse directly in your Inbox!

  • Contact
  • Privacy Policy
  • Terms & Conditions
© 2026 Crypto Pulse Daily - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.

Cleantalk Pixel
  • bitcoinBitcoin(BTC)$63,083.00-1.32%
  • ethereumEthereum(ETH)$1,828.86-2.32%
  • tetherTether(USDT)$1.00-0.01%
  • binancecoinBNB(BNB)$561.23-2.61%
  • usd-coinUSDC(USDC)$1.000.00%
  • rippleXRP(XRP)$1.08-2.10%
  • solanaSolana(SOL)$74.40-1.96%
  • tronTRON(TRX)$0.322423-0.20%
  • Figure HelocFigure Heloc(FIGR_HELOC)$1.02-1.68%
  • HyperliquidHyperliquid(HYPE)$59.80-8.58%