Skip to content

LinkedIn
Facebook
Instagram
Twitter

Home
Books
TILT
Contact me
About me

IT What?

Making IT Less Stressful. Bit by Bit. Day by Day.

Written by Vladimir Remenar15.06.201915.06.2019

AESDDoS Botnet Malware iskorištava krivo konfiguriran Docker API

Kriva konfiguracija jednako je opasna kao i bilo koji vulnerability. U ovom slučaju ekipa, komfora radi, omogućava Docker API na portu 2375 dostup s javnog Interneta.

Napad kreće skenom porta, izlistava running kontejnere a zatim se deploya upotrebom “docker exec” naredbe. A onda kreće show.

https://blog.trendmicro.com/trendlabs-security-intelligence/aesddos-botnet-malware-infiltrates-containers-via-exposed-docker-apis/

Share this:

Click to email a link to a friend (Opens in new window)
Click to share on WhatsApp (Opens in new window)
Click to share on Twitter (Opens in new window)
Click to share on Facebook (Opens in new window)
Click to share on LinkedIn (Opens in new window)

Posted in DevOps, Security.Tagged aesddos, botnet, Docker, malware.

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Search for:

Categories

Books (29)
Security (29)
DevOps (24)
Misc (19)
Conferences (16)

Tags

summary (26)
book (23)
agile (14)
management (10)
Faculty of Transport and Traffic Sciences (9)

Year

2024 (14)
2023 (69)
2022 (9)
2020 (2)
2019 (33)

Post navigation

Previous Post TKI – tjedan 21/22

Next Post bxaq malware

Proudly powered by WordPress | Theme: Escutcheon by Automattic.