A significant cryptojacking campaign, orchestrated by a threat actor identified as JINX-0132, has been observed targeting vulnerable and misconfigured DevOps web server platforms.
The campaign, discovered by Wiz Threat Research Report, demonstrates systematic exploitation of widespread security lapses in publicly accessible applications such as HashiCorp Nomad, HashiCorp Consul, Docker Engine API, and Gitea.
https://cyberpress.org/cybercriminals-l ... ver-flaws/