Crypto-Mining Attacks Targeting Kubernetes Clusters via Kubeflow Instances
Cybersecurity researchers on Tuesday disclosed a new large-scale campaign targeting Kubeflow deployments to run malicious cryptocurrency mining containers. The campaign involved deploying TensorFlow pods on Kubernetes clusters, with the pods running legitimate TensorFlow images from the official Docker Hub account. However, the container images were configured to execute rogue commands that mine cryptocurrency. Microsoft said the deployments witnessed an uptick towards the end of May. Kubeflow is an open-source machine learning platform designed to deploy machine learning workflows on Kubernetes, an orchestration service used for managing and scaling containerized workloads across a cluster of machines.
Jun-9-2021, 11:01:52 GMT
- Country:
- North America > United States > California > Santa Clara County > Palo Alto (0.06)
- Industry:
- Information Technology > Security & Privacy (1.00)
- Banking & Finance > Trading (0.97)
- Technology:
- Information Technology
- e-Commerce > Financial Technology (1.00)
- Artificial Intelligence > Machine Learning (1.00)
- Security & Privacy (0.97)
- Cloud Computing (0.92)
- Information Technology