"New Redis Attack Campaign Weakens Systems Before Deploying Cryptominer"

Researchers warn that cloud attackers have launched a new cryptocurrency jacking campaign targeting exposed Redis deployments. Unlike previous attacks on the in-memory data store, the threat actors use specific system-weakening commands prior to installing their cryptocurrency mining malware. Cado Security researchers named the new miner Migo and noted that it is being deployed with a user mode rootkit. The malware also includes a persistence mechanism to ensure its survival through reboots. This article continues to discuss findings regarding the Redis attack campaign.

CSO Online reports "New Redis Attack Campaign Weakens Systems Before Deploying Cryptominer"

Submitted by grigby1