"Attackers Deploy Rootkits on Misconfigured Apache Hadoop and Flink Servers"
A new malware attack campaign exploits misconfigurations in Apache Hadoop and Flink, two technologies used for processing large data sets and data streams. The attackers exploit the misconfigurations without authentication to launch rootkits on the underlying systems and install a Monero cryptocurrency mining program. According to Aqua Security researchers, the threat actors use packers and rootkits to hide their malware. This article continues to discuss the use of misconfigured Apache Hadoop and Flink servers by attackers.
CSO Online reports "Attackers Deploy Rootkits on Misconfigured Apache Hadoop and Flink Servers"
Submitted by grigby1
Submitted by grigby1 CPVI
on