CISCO SYSTEMS, INC.

CSCO
Delayed Quote. Delayed  - 01/15 04:00:00 pm
45.43USD +0.62%

Cisco : Xanthe – Docker aware miner

12/01/2020 | 11:11am

By Vanja Svajcer with contributions from Adam Pridgen

Attackers are constantly reinventing ways of monetizing their tools. Cisco Talos recently discovered an interesting campaign affecting Linux systems employing a multi-modular botnet with several ways to spread and a payload focused on providing financial benefits for the attacker by mining Monero online currency.

The actor employs various methods to spread across the network, like harvesting client-side certificates for spreading to known hosts using ssh, or spreading to systems with an incorrectly configured Docker API.

We believe this is the first time anyone's documented Xanthe's operations. The actor is actively maintaining all the modules and has been active since March this year.

Read more

Share:


Disclaimer

Cisco Systems Inc. published this content on 01 December 2020 and is solely responsible for the information contained therein. Distributed by Public, unedited and unaltered, on 01 December 2020 16:10:00 UTC
© Publicnow 2021
Copier lien
All news about CISCO SYSTEMS, INC.
2d ago
Cisco : Application-First Infrastructures
2d ago
Cisco : Threat Roundup for January 8 to January 15
2d ago
Did You Know About The Alternative To 40G BiDi: 40G CSR?
3d ago
Cisco : A New Year Calls for a New DevNet Partner Specialization
3d ago
Election Security: A conversation with Matt Olney from Cisco Talos