"Misconfigured Selenium Grid Servers Abused for Monero Mining"

Threat actors are abusing a Selenium Grid misconfiguration to deploy a modified XMRig tool for Monero cryptocurrency mining. Selenium Grid is a popular web app testing framework used by developers to automate testing across multiple machines and browsers. Researchers at Wiz discovered that the malicious activity, which they are tracking as "SeleniumGreed," has been running for over a year, exploiting the service's lack of authentication in the default configuration. This article continues to discuss threat actors' exploitation of a misconfiguration in Selenium Grid to mine for Monero cryptocurrency.  

BleepingComputer reports "Misconfigured Selenium Grid Servers Abused for Monero Mining"

Submitted by grigby1

Submitted by Gregory Rigby on