Dark Reading

Attackers Use Docker APIs, Tor Anonymity in Stealthy Crypto Heist

Threat actors are targeting cloud-based networks by exploiting misconfigured Docker APIs to gain access to containerized environments, then using the anonymity of Tor to hide their deployment of ...
InfoWorld

The high cost of misconfigured DevOps: Global cryptojacking hits enterprises

A massive ongoing cryptojacking operation is actively exploiting misconfigured DevOps tools, including Nomad, Consul, Docker, and Gitea, to hijack computing power for cryptocurrency mining, Wiz Threat ...