1 year ago

The Kinsing malware has long been known to Linux administrators, and, now — surprise! https://www.cyberark.com/resources/threat-research-blog/kinsing-the-malware-with-two-faces is an old-school Linux/Unix Executable and Link format (ELF) malware program, written in Go.

These are the exploitation of weakly configured https://www.postgresql.org/ containers and vulnerable images.

Behavior similar to common Linux bots detected – execution of a process associated with common Linux botnets.

The other popular way to sneak Kinsing in is to exploit weakly configured PostgreSQL instances.