A new malware campaign, named Spinning YARN, has been identified by Cado Security Labs, targeting misconfigured servers running Apache Hadoop YARN, Docker, Atlassian Confluence, and Redis. This campaign utilizes novel Golang payloads to exploit vulnerabilities in these systems for cryptocurrency mining and enabling remote access. The malware specifically targets Docker, Apache Hadoop, Redis, and Confluence hosts, exploiting misconfigurations for malicious purposes. Security analysts have provided a full analysis of the campaign, highlighting the use of cloud technologies for security breaches. The campaign is notable for its focus on #cloudsecurity, #cloudforensics, #cloudIR, #threatintel, and #spinningYARN, raising significant concerns in the #cybersecurity and #hacking communities.
Linux Malware Campaign Targets Misconfigured Cloud Servers #cybersecurity https://t.co/6mseB5jPGr
Anatomy of a BlackCat Attack Through the Eyes of Incident Response #cybersecurity https://t.co/qNgecBaazT
Attack targets Docker, Hadoop, Confluence, and Redis with new payloads https://t.co/aHsy5f38oV
Cloud-y Linux Malware Rains on Apache, Docker, Redis & Confluence: https://t.co/zNmkZ7RF2v by darkreading #infosec #cybersecurity #technology #news
Hackers Exploit Misconfigured YARN, Docker, Confluence, Redis Servers for Crypto Mining: https://t.co/RbtQfne5S7 by The Hacker News #infosec #cybersecurity #technology #news
🚨 New #malware campaign targets misconfigured servers running Apache Hadoop YARN, Docker, Atlassian Confluence, and Redis to deliver #cryptocurrency miners and enable remote access. Learn more: https://t.co/Zd5QRsWdQ8 #cybersecurity #hacking #cloudsecurity
Linux Malware Targets Docker, Apache Hadoop, Redis and Confluence https://t.co/vLEGwq0tYu
Cado Security Labs discover Spinning YARN, an emerging malware campaign using novel Golang payloads to exploit #Docker, Hadoop #YARN, #Confluence and #Redis hosts. Full analysis here: https://t.co/g54PIwcFrL #cloudsecurity #cloudforensics #cloudIR #threatintel #spinningYARN