Cryptomining Campaign Exploiting Grid Services
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
Wiz researchers discovered an ongoing threat campaign, dubbed 'SeleniumGreed', that exploits exposed Selenium Grid services for cryptomining. The campaign targets publicly accessible instances of Selenium Grid, an integral component of the widely used Selenium testing framework. By leveraging features of Selenium WebDriver API, the threat actor executes remote commands, deploys a modified XMRig miner, and employs various techniques to evade detection and maximize mining efforts.
OPENCTI LABELS :
cryptomining,xmrig,threat,webdriver,grid,selenium
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
Cryptomining Campaign Exploiting Grid Services