Cybercriminals Leverage DevOps Web Server Flaws to Launch Malware Attacks
Posted: Thu Jun 05, 2025 4:46 am
A significant cryptojacking campaign, orchestrated by a threat actor identified as JINX-0132, has been observed targeting vulnerable and misconfigured DevOps web server platforms.
The campaign, discovered by Wiz Threat Research Report, demonstrates systematic exploitation of widespread security lapses in publicly accessible applications such as HashiCorp Nomad, HashiCorp Consul, Docker Engine API, and Gitea.
https://cyberpress.org/cybercriminals-l ... ver-flaws/
The campaign, discovered by Wiz Threat Research Report, demonstrates systematic exploitation of widespread security lapses in publicly accessible applications such as HashiCorp Nomad, HashiCorp Consul, Docker Engine API, and Gitea.
https://cyberpress.org/cybercriminals-l ... ver-flaws/