Threat actors are targeting vulnerable Docker services by deploying the XMRig cryptocurrency miner and the 9Hits Viewer software to make money from compromised hosts. The method used to spread the malware is unclear but is likely to involve scanning for prospects using search engines. The servers are breached to deploy two malicious containers via the Docker API, leaving the servers unable to perform as expected.
FBI warns about online file converter sites which install malware, steal private information
Scammers are mimicking popular online tools that convert .pdf, .doc, and .jpg files, to install malware and ransomware onto users’ computers or steal personal data.
