Tag

Cloud Environments

All articles tagged with #cloud environments

cybersecurity2 years ago•2 min saved

Kinsing Hackers Exploit 'Looney Tunables' Linux Bug to Steal Cloud Credentials

Hackers behind the Kinsing malware are targeting vulnerable cloud environments by exploiting the Linux security issue known as "Looney Tunables" (CVE-2023-4911), which allows attackers to gain root privileges. The Kinsing malware, known for deploying cryptomining software, has been observed breaching cloud-based systems and applications such as Kubernetes, Docker APIs, Redis, and Jenkins. The attack involves exploiting a vulnerability in the PHP testing framework 'PHPUnit' to gain code execution, followed by leveraging the Looney Tunables issue for privilege escalation. The attackers are also interested in obtaining cloud service provider credentials, indicating a shift towards more sophisticated activities.

via BleepingComputer|

#cloud-environments #cve-2023-4911 #cybersecurity

cybersecurity2 years ago•1 min saved

"Cloud Security Alert: Kinsing Actors Exploit Linux Flaw for Breaching Environments"

Threat actors associated with Kinsing are exploiting the recently disclosed Linux privilege escalation flaw, Looney Tunables, in a new experimental campaign aimed at breaching cloud environments. The attackers are also extracting credentials from the Cloud Service Provider (CSP), marking the first documented instance of active exploitation of Looney Tunables. Kinsing actors have a history of quickly adapting their attack chains to exploit newly disclosed security flaws, and in this case, they are using a critical remote code execution vulnerability in PHPUnit to gain initial access. The ultimate goal of the attack is to extract CSP credentials for future attacks, indicating a potential broadening and intensification of the Kinsing operation in cloud-native environments.

via The Hacker News|

#cloud-environments #credential-theft #cybersecurity