New Cryptojacking Attack Targets Docker API to Create Malicious Swarm Botnet

Oct 1, 2024

Cybersecurity researchers have uncovered a new cryptojacking campaign targeting the Docker Engine API with the goal of co-opting the instances to join a malicious Docker Swarm controlled by the threat actor.
This enabled the attackers to “use Docker Swarm’s orchestration features for command-and-control (C2) purposes,” Datadog researchers Matt Muir and Andy Giron said in an analysis.
The attacks

Get Free Report & Network Analysis

Please check your email for the free report.