Amazon Web Services customers have been warned …

Amazon Web Services customers warned of hidden Monero miners

Israeli cybersecurity company Mitiga has recommended that users of certain applications in Amazon Web Services check their systems for hidden Monero miners..

Clients of the Amazon Elastic Compute Cloud or EC2 cloud computing service using community-prepared Amazon Machine Images (AMIs) are at risk, analysts say. If such a machine contains a hidden miner, it can consume all the computing resources leased by the client from Amazon. At the same time, attackers take advantage of the private cryptocurrency Monero to hide their traces, as in most other hidden mining scenarios..

Mitiga was evaluating the AWS infrastructure of a client financial institution when they stumbled upon a hidden miner. It was installed on a virtual machine running Microsoft Windows – Server 2008. According to analysts, the hackers published an infected image of the machine on AWS in order to carry out financial fraud: the client pays the bills, while the leased facilities go to mining cryptocurrency to enrich them.

Amazon Web Services customers have been warned ...

“Installing community-generated code in a business-critical infrastructure carries significant risks,” the company said. “This is yet another example of risk in today’s cloud marketplaces offering easy-to-use solutions yet capable of containing malicious code or executable files, often from unknown sources.”.

Amazon Web Services customers have been warned ...

Similar articles