"Hackers Target Docker, Hadoop, Redis, Confluence With New Golang Malware"

Misconfigured servers running Apache Hadoop YARN, Docker, Confluence, or Redis are the target of new Golang-based malware that automates the discovery and compromise of the hosts. The malicious tools used in the campaign exploit misconfigurations and an old Atlassian Confluence vulnerability to execute code on the system. Cado Security researchers discovered the campaign and examined the attack payloads, bash scripts, and Golang ELF binaries. The researchers point out that the intrusion set is similar to previously reported cloud attacks, some of which were attributed to threat actors such as TeamTNT, WatchDog, and Kiss-a-Dog. This article continues to discuss findings regarding the new Golang malware.

Bleeping Computer reports "Hackers Target Docker, Hadoop, Redis, Confluence With New Golang Malware"

Submitted by grigby1