Crypto-mining gangs

During the last few months, crypto-mining gangs have switched their modus operandi from attacking and hijacking unpatched servers to abusing the free tiers of cloud computing platforms. The gangs have been running cryptocurrency mining apps on free-tier accounts. When the trial period or limit is reached, they register for a new free account. This keeps the providers' servers at their upper limit, slowing down normal operations. The Record started monitoring this phenomenon about 6 weeks ago when it first learned about this type of abuse on GitHub. Since then it has learned about similar abuses on GitLab, Microsoft Azure, TravisCI, LayerCI, CircleCI, Render, CloudBees CodeShip, Sourcehut, and Okteto. Automated solutions that detect and respond to this type of abuse may help. Such solutions are costly and not guaranteed to work.

19 views0 comments

Recent Posts

See All

Dark Web monitoring

Cybersecurity officials are monitoring the dark web for evidence of dumped data from the HSE ransomware attack. The suspected gang behind the attack, believed to be in Russia, last year established a

No ransom will be paid

The Irish Government insisted that no ransom will be paid to hackers who stole Health Service Executive data despite the cyber gang's threat to publish the files on the dark web. The gang sent a decry

German hospitals and hackers

German hospitals may be at increased risk from hackers, the head of the country's cybersecurity agency said. This follows high-profiles attack on the Irish health service and the Colonial fuel pipelin