Proxyjacking - Crystal Morin and Michael Clark, Sysdig
Techstrong TV Interviews
•
01-Jan-1900
Sysdig’s Threat Research Team (Sysdig TRT) detected a new attack, dubbed proxyjacking, that leveraged the Log4j vulnerability for initial access. The attackers then sell the victim’s IP addresses to proxyware services for profit. While Log4j attacks are common, the payload used in this case was uncommon. Instead of the typical cryptojacking or backdoor payload, Sysdig TRT witnessed the attacker installing an agent which turned the compromised account into a proxy server, allowing the attacker to sell the IP to a proxyware service and collect the profit.
Up Next in Techstrong TV Interviews
-
Employee Workflows and Low Code Solut...
ServiceNow and NASCAR executives discuss their latest announcement around how NASCAR will expand its use of ServiceNow in its mission to become the most technologically advanced sports entertainment company. NASCAR will implement ServiceNow employee workflows and low code solutions to transform i...
-
Perceptions of Emerging Technologies ...
Prashanth Chandrasekar, CEO of Stack Overflow, discusses the findings of the recent survey which polled 2,000+ developers and technologists to learn more about their perceptions of emerging technologies. This data looks at technologies from multiple perspectives and reveals what developers think ...
-
SBOM Manifests Database - Eric Allard...
SOOS CTO Eric Allard explains why the company created a free public database to provide access to more than 54 million software bill of material (SBOM) manifests.
