Infosec watchers: TeamTNT crew may blast holes in Azure, Google Cloud users
In addition, the group previously hosted its command-and-control activities and files in an openly accessible directory on a single domain. Now the C2's directory requires a hardcoded username and password to access, making it tougher to inspect and stop. This infrastructure, which previously used a Netherlands-based IP address, now runs across several subdomains.
"The meticulous attention to detail indicates the actor has clearly experienced plenty of trial and error. The actor has also improved the tool's data formatting to enable more autonomous activity, which demonstrates a certain level of maturity and skill." Their investigation kicked off after an attack was detected against a Jupyter honeypot run by Aqua, and led to an examination of a container image and Docker Hub account, they. They described the Silentbob campaign as an"aggressive cloud worm, designed to deploy on exposed JupyterLab and Docker APIs in order to deploy Tsunami malware, cloud credentials hijack, resource hijack and further infestation of the worm.
"Given that some functions in the code remain unused and the linked attack patterns suggest manual testing, we theorize that the attacker is in the process of optimizing their algorithm," they wrote at the start of July.
Danmark Seneste Nyt, Danmark Overskrifter
Similar News:Du kan også læse nyheder, der ligner denne, som vi har indsamlet fra andre nyhedskilder.
Google Forms: Sign-inAccess Google Forms with a personal Google account or Google Workspace account (for business use).
Læs mere »
Google Forms: Sign-inAccess Google Forms with a personal Google account or Google Workspace account (for business use).
Læs mere »
Retro streaming platform Antstream Arcade is first third-party cloud gaming service on XboxAntstream Arcade is soon to launch as the first third-party cloud gaming service on Xbox. Already available across PC a…
Læs mere »
Microsoft is reportedly considering selling some UK cloud gaming rights | VGCMicrosoft is reportedly considering selling some of its UK cloud gaming rights in a bid to gain regulatory approval for its $69 billion Activision Blizzard acquisition
Læs mere »
Google's ChatGPT rival Bard launches in Europe and BrazilGoogle’s Bard artificial intelligence chatbot can now also talk and respond to visual prompts.
Læs mere »
Google Bard can now speak loud and clear as update introduces speech featureSpeech function available in over 40 languages
Læs mere »