Summary:

A new malware campaign is exploiting 9hits in Docker services, using it as a payload. The campaign deploys two containers, including a standard XMRig miner and the 9hits viewer application, to generate credits for the attacker. The 9hits container runs a script that allows the app to authenticate with 9hits servers and earn credits, while the XMRig container mines cryptocurrency. The impact on compromised hosts is resource exhaustion, potentially leading to severe breaches. The campaign highlights the continuous evolution of attacker strategies and the persistent vulnerability of exposed Docker hosts.

Hashtags: #malware #docker #9hits #cyberattack #cryptocurrency #resourceexhaustion #vulnerability

https://www.infosecurity-magazine.com/news/malware-exploits-9hits-docker/