Microsoft warns against malicious cryptomining – attack15. June 2020
Microsoft warns against malicious cryptomining – attack
New York, 15.6.2020
Microsoft has discovered a cyberattack campaign that exploits Kubernetes to install cryptomining software in its Azure cloud.
Microsoft’s Azure Security Center found a malicious container that ran as part of a Kubeflow implementation and contained a cryptominer that uses the same processing power as Kubeflow. The attackers were able to exploit a misconfiguration of Kubeflow, which is a machine learning toolkit for Kubernets, Microsoft said.
Kubernetes is an open source project that automates the deployment, scaling and management of containerized applications.
Once before, in April this year, Microsoft discovered a large-scale cryptomining attack against Kubernetes clusters.