Darktrace researchers have uncovered a new sophisticated malware campaign targeting Docker environments. The new malware variant connects out to a legitimate crypto website which allows users to join a decentralized network and run a social media scraping node in exchange for private crypto tokens. The malware simply connects out to the crypto site and sends signals between the systems to gain more and more crypto tokens.
In this campaign, threat actors were also observed using unique obfuscation techniques, hiding this malicious code under 63 layers to evade detection.
You can find out more here: http://www.darktrace.com/blog/obfuscation-overdrive-next-gen-cryptojacking-with-layers
Related
This entry was posted on April 22, 2025 at 7:00 am and is filed under Commentary with tags Darktrace. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Darktrace uncovers new malware campaign targeting Docker environments
Darktrace researchers have uncovered a new sophisticated malware campaign targeting Docker environments. The new malware variant connects out to a legitimate crypto website which allows users to join a decentralized network and run a social media scraping node in exchange for private crypto tokens. The malware simply connects out to the crypto site and sends signals between the systems to gain more and more crypto tokens.
In this campaign, threat actors were also observed using unique obfuscation techniques, hiding this malicious code under 63 layers to evade detection.
You can find out more here: http://www.darktrace.com/blog/obfuscation-overdrive-next-gen-cryptojacking-with-layers
Share this:
Like this:
Related
This entry was posted on April 22, 2025 at 7:00 am and is filed under Commentary with tags Darktrace. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.