News list for "devops"
Hackers use public DevOps tools for cryptocurrency mining attacks
Security firm Wiz has discovered that a hacker group codenamed JINX-0132 is using a DevOps tool configuration vulnerability on a large scale to conduct cryptocurrency mining attacks. The attack mainly targets tools such as HashiCorp Nomad/Consul, Docker API and Gitea, and about 25% of cloud environments are at risk. The attack methods include: deploying XMRig mining software with Nomad default configuration, executing malicious scripts through Consul's unauthorized API, and controlling the expos...
2025-06-04 16:00:01
黑客利用公共DevOps工具进行加密货币挖矿攻击
安全公司 Wiz 发现代号 JINX-0132 的黑客组织正大规模利用 DevOps 工具配置漏洞进行加密货币挖矿攻击。该攻击主要针对 HashiCorp Nomad/Consul、Docker API 和 Gitea 等工具,约 25%的云环境存在风险。攻击手法包括:利用 Nomad 默认配置部署 XMRig 挖矿软件、通过 Consul 未授权 API 执行恶意脚本、控制暴露的 Docker API 创建挖矿容器。
2025-06-04 16:00:01
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Practical Tools
See more7x24 Crypto Flash News
Hot News
Cryptocurrency Payback Calculator - InstructionsVitalik: "DAO" means "project", "official" means "scam"Backpack Exchange已面向英国用户开放其服务派盾:NIBI同名代币发生Rug Pull,损失约31.39万美元香港金管局推出稳定币发行人沙盒CIAN与Lido合作,在Base上推出wstETH Hyper-Staking VaultGate.io 3月储备金总额突破60亿美元,额外储备金超8亿美元Polyhedra Network已于3月12日16时完成ZK空投快照英FCA:不会反对加密资产相关ETN上市请求BTC流通市值突破1.4万亿美元,续创新高Space Nation将于3月底启动OIK代币空投
Related Recommendations
Cryptocurrency Payback Calculator - InstructionsBackpack Exchange已面向英国用户开放其服务派盾:NIBI同名代币发生Rug Pull,损失约31.39万美元香港金管局推出稳定币发行人沙盒CIAN与Lido合作,在Base上推出wstETH Hyper-Staking VaultGate.io 3月储备金总额突破60亿美元,额外储备金超8亿美元Polyhedra Network已于3月12日16时完成ZK空投快照英FCA:不会反对加密资产相关ETN上市请求BTC流通市值突破1.4万亿美元,续创新高Space Nation将于3月底启动OIK代币空投
