kinsing-campaign-2020 (Campaign)

[email protected] (Wiz Threat Research) 2020-01-16T00:00:00+00:00 View Original

Full Report

On 2020-01-16, a campaign was reported, involving Kinsing operator, gaining initial access via Software misconfig, 1-day vulnerability, while using Vulnerability exploitation, Misconfigured Docker abuse, targeting Redis, Confluence Server, Docker, Apache Hadoop, Solr, ThinkPHP to achieve Resource hijacking. The following tools were observed: Kinsing.

Analysis Summary