BTC $62,437.32 -1.03%
ETH $1,779.13 -0.65%
BNB $569.35 -0.16%
XRP $1.06 -0.84%
SOL $74.95 -1.51%
TRX $0.3242 -2.04%
DOGE $0.0717 -1.18%
ADA $0.1572 -0.90%
BCH $232.37 -2.45%
LINK $7.91 -0.70%
HYPE $63.05 -5.80%
AAVE $95.64 -0.22%
SUI $0.7224 -0.75%
XLM $0.1787 -2.71%
ZEC $498.50 -4.74%
BTC $62,437.32 -1.03%
ETH $1,779.13 -0.65%
BNB $569.35 -0.16%
XRP $1.06 -0.84%
SOL $74.95 -1.51%
TRX $0.3242 -2.04%
DOGE $0.0717 -1.18%
ADA $0.1572 -0.90%
BCH $232.37 -2.45%
LINK $7.91 -0.70%
HYPE $63.05 -5.80%
AAVE $95.64 -0.22%
SUI $0.7224 -0.75%
XLM $0.1787 -2.71%
ZEC $498.50 -4.74%

Hackers exploit public DevOps tools for cryptocurrency mining attacks

2025-06-04 23:57:46
Collection

ChainCatcher message, security company Wiz has discovered that a hacker organization codenamed JINX-0132 is massively exploiting configuration vulnerabilities in DevOps tools for cryptocurrency mining attacks. The attack primarily targets tools such as HashiCorp Nomad/Consul, Docker API, and Gitea, with approximately 25% of cloud environments at risk. The attack methods include: deploying XMRig mining software using Nomad's default configuration, executing malicious scripts through Consul's unauthorized API, and controlling exposed Docker API to create mining containers.

app_icon
ChainCatcher Building the Web3 world with innovations.