Hackers use public DevOps tools for cryptocurrency mining attacks
2025-06-04 16:00:01
Security firm Wiz has discovered that a hacker group codenamed JINX-0132 is using a DevOps tool configuration vulnerability on a large scale to conduct cryptocurrency mining attacks. The attack mainly targets tools such as HashiCorp Nomad/Consul, Docker API and Gitea, and about 25% of cloud environments are at risk. The attack methods include: deploying XMRig mining software with Nomad default configuration, executing malicious scripts through Consul's unauthorized API, and controlling the exposed Docker API to create mining containers.
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Previous article:
ETH/BTC exchange rate rose 2% in the past 3 hours
