Crypto-mining botnet is now stealing Docker and AWS credentials

A crypto-mining botnet is using a malicious shell script to steal credentials from Docker and AWS.

Analysts from security firm Trend Micro said in a report that they spotted a malware botnet that collects and steals Docker and AWS credentials.

The researchers have linked the botnet to a cybercrime operation known as TeamTNT, a group first spotted during the 2020 summer installing cryptocurrency-mining malware on misconfigured container platforms and stealing credentials.

You can continue here.

Leave a Comment

Your email address will not be published. Required fields are marked *