Tag

Kinsing

All articles tagged with #kinsing

cybersecurity2 years ago•1 min saved

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability for Cryptomining and Rootkits

The Kinsing threat group is exploiting a critical vulnerability in Apache ActiveMQ servers to infect Linux systems with cryptocurrency miners and rootkits. The malware deploys a cryptocurrency mining script that exploits the host's resources, causing damage to infrastructure and system performance. Kinsing is known for targeting misconfigured containerized environments and quickly adapting tactics to exploit newly disclosed flaws. Organizations are advised to update to a patched version of Apache ActiveMQ to mitigate potential threats.

via The Hacker News|

#apache-activemq #cryptocurrency-mining #cybersecurity

cybersecurity2 years ago•1 min saved

"Cloud Security Alert: Kinsing Actors Exploit Linux Flaw for Breaching Environments"

Threat actors associated with Kinsing are exploiting the recently disclosed Linux privilege escalation flaw, Looney Tunables, in a new experimental campaign aimed at breaching cloud environments. The attackers are also extracting credentials from the Cloud Service Provider (CSP), marking the first documented instance of active exploitation of Looney Tunables. Kinsing actors have a history of quickly adapting their attack chains to exploit newly disclosed security flaws, and in this case, they are using a critical remote code execution vulnerability in PHPUnit to gain initial access. The ultimate goal of the attack is to extract CSP credentials for future attacks, indicating a potential broadening and intensification of the Kinsing operation in cloud-native environments.

via The Hacker News|

#cloud-environments #credential-theft #cybersecurity