Published inLacework LabsTeamTNT Builds Botnet from Cloud ServersTeamTNT is a relatively recent addition to a growing number of threats targeting the cloud. While they employ some of the same tactics as…Jan 17, 2021Jan 17, 2021
Published inLacework LabsMeet Muhstik — IoT Botnet Infecting Cloud ServersCloud infrastructure is generally immune to IoT related threats however there are some exceptions — one of these is “Muhstik”. The Muhstik…Nov 10, 2020Nov 10, 2020
Published inLacework LabsMoobot’s Cloud MigrationThere is an abundance of Mirai-based botnets in the wild however “Moobot” ,which targets vulnerable Docker APIs, recently showed up on our…Oct 15, 2020Oct 15, 2020
Published inLacework LabsThe Redis RushRedis has been heavily targeted for years and recent activity shows it is more popular than ever with attackers. There are several reasons…Oct 1, 2020Oct 1, 2020
Published inLacework LabsDoki Dukes with KinsingCloud infrastructure is premium real estate for cryptojackers and they are constantly looking for new ways to exploit your workloads…Aug 4, 2020Aug 4, 2020
Published inLacework LabsBash Wars: An examination of bash malware tactics and campaignsWhether you’re an engineer or a system administrator, you’ve probably found bash to be a go-to resource for automating your Linux tasks…Jun 26, 2020Jun 26, 2020
Published inLacework LabsExamining attacker reconnaissance through the Kubernetes Attack MatrixOn April 2 nd, Microsoft released their Attack matrix for Kubernetes, a collection of Kubernetes attack patterns modeled after Mitre’s…Apr 24, 2020Apr 24, 2020
Published inLacework LabsWho’s Attacking My Containers?If you’re concerned about the security of your cloud resources then you may have asked yourself: “Who’s attacking my containers?” This…Apr 10, 2020Apr 10, 2020
Published inLacework LabsH2Miner botnet spreads container malware in cloudContainers are gaining popularity as malware deployment mechanisms in the cloud. Beginning on Valentine’s Day, one malicious container…Mar 25, 2020Mar 25, 2020
Published inLacework LabsResearch Automation with ATT&CK and PythonMITRE did the community a huge favor with the development of ATT&CK — an open source knowledge base for attack techniques. Threat…Mar 10, 2020Mar 10, 2020
