Report: Hundreds of Docker hosts exploited by crypto miners

Hacks • March 5, 2019, 3:55PM EST
Partner offers
The Block may may earn a commission if you use our partner offers, at no extra cost to you.

Hundreds of Docker hosts have vulnerabilities that are being exploited by crypto miners, cybersecurity company Imperva reports. Docker is a computer program that enables developers to perform operating system virtualization. This enables developers to create, deploy, and execute applications more efficiently. According to Imperva, Docker also enables organizations to interact with it through a remote API. However, some organizations have misconfigurations that allow attackers to access host services for phishing campaigns, steal credentials, and install unauthorized software.

Imperva claims that there are over 3,800 Docker hosts with remote APIs publicly exposed. Of these, 400 are particularly vulnerable to phishing attacks. "We found that most of the exposed Docker remote API IPs are running a cryptocurrency miner for a currency called Monero," the firm states.

AUTHOR

Steven Zheng profile picture Steven Zheng

Steven Zheng is a researcher for The Block. He joined The Block in August 2018. Steven graduated from St. John’s University with a degree in economics. Previously, he covered blockchain and crypto at Radicle, a startup analytics firm. He also had brief stints at Cheddar, a media startup, and Bowery Capital, a venture capital firm. He owns bitcoin. Follow Steven on Twitter at: @Dogetoshi

See More

WHO WE ARE

The Block is a news provider that strives to be the first and final word on digital assets news, research, and data.

+ Follow us on Google News
Connect with the block on

More by Steven Zheng