Skip to content
Glock Enterprises
  • Welcome
  • Blog
  • Resources
  • Support

z0Miner botnet hunts for unpatched ElasticSearch, Jenkins servers

9th March 20219th March 2021 peterglock

Worth scanning for your own instances before this botnet finds them. Shodan is your friend…: …:

A cryptomining botnet spotted last year is now targeting and attempting to take control of Jenkins and ElasticSearch servers to mine for Monero (XMR) cryptocurrency. […]

Original Article

Information Security permalink

Post navigation

← Employers overestimate staff cyber smarts
Warning the World of a Ticking Time Bomb →

Recent Posts

  • CISA warns orgs to switch to Exchange Online Modern Auth until October
  • California’s attempt to protect kids online could end adults’ internet anonymity – TheRegister
  • The Link Between AWM Proxy & the Glupteba Botnet
  • Securing cyber-physical infrastructure | NCC Group – JDSupra
  • ADPPA US Privacy Law: Coming Soon in Wake of Roe v. Wade Redo – Security Boulevard

Get in touch

Email: [email protected]


View Glock Enterprises Ltd profile on Ariba Discovery

Data Protection Register

Registered with the ICO: ZA494319

About

Glock Enterprises Ltd. Registered in England & Wales No. 11183883

VAT No: GB 361 2795 89

Glock Enterprises (Europe) OÜ
Registered in Estonia
No. 16149069

VAT No: EE102351110

All content (c) Glock Enterprises Ltd 2021

Pages

  • Blog
  • Privacy Policy
  • Resources
    • Free Trial – Private Threat Intelligence
    • White Paper: Building a Business Case for Cybersecurity Asset Management
    • White Paper: Cyber Deception – Migrating to an alternative platform
    • White Paper: Hunting for Threats in Operational Technology
    • White Paper: Internet Connected Storage
    • Whitepaper: 5 Steps to Building a Threat Modelling Program for AWS
    • Whitepaper: Coping with a flood of Data Subject Access Requests
  • Services
  • Support
  • Under Construction, Maintenance, or Retired…
  • Welcome

The Latest from Twitter

Brown Glock Follow

Intelligence and expertise in cyber and data risk. Also...random musings on lots of other stuff.

brownglock
brownglock Brown Glock @brownglock ·
1 Jul

…And they put @FrankRGardner next to the toilets!

Frank Gardner @FrankRGardner

FFS not again! Just back from exhausting week covering NATO summit in Madrid and quelle surprise, Im still stuck on the plane at Gatwick. Iberia crew are gone and a new crew has come onboard. Just WHY are UK airports so consistently crap at getting disabled people off planes ?

Reply on Twitter 1542755057476722688 Retweet on Twitter 1542755057476722688 Like on Twitter 1542755057476722688 Twitter 1542755057476722688
brownglock Brown Glock @brownglock ·
30 Jun

Repost: Still using Basic Auth? Not only is it a bad idea, but your going to be forced to migrate to OAuth so you might as well move now...:

[...] CISA's warning comes after Microso [...] https://glock.co.uk/?p=67659

Reply on Twitter 1542580625542156294 Retweet on Twitter 1542580625542156294 Like on Twitter 1542580625542156294 Twitter 1542580625542156294
brownglock Brown Glock @brownglock ·
30 Jun

Still using Basic Auth? Not only is it a bad idea, but your going to be forced to migrate to OAuth so you might as well move now...:

[...] CISA's warning comes after Microso [...] https://glock.co.uk/?p=67659

Reply on Twitter 1542429385172598784 Retweet on Twitter 1542429385172598784 Like on Twitter 1542429385172598784 Twitter 1542429385172598784
brownglock Brown Glock @brownglock ·
29 Jun

I was about to comment that I’ve gone the other way and only use one screen. Then I remember my habit of printing out the doc I’m working on AND using my iPad alongside my laptop…

Azeria @Fox0x01

I swear, no matter how many monitors I get, it’s never enough.
Reply on Twitter 1542205282696183808 Retweet on Twitter 1542205282696183808 Like on Twitter 1542205282696183808 Twitter 1542205282696183808
Load More...
Proudly powered by WordPress | Theme: Moesia by aThemes