Poorly protected PostgreSQL databases running on Linux machines are being compromised by cryptojacking attackers. The attack – observed by Aqua Security researchers on a honeypot system – starts with the threat actors brute-forcing access credentials. Once access is achieved, the threat actor: Creates a new user role with login capability and high privileges Strips the user role they compromised of superuser privileges (so that other attackers who may also gain access via brute-forcing will have … More
The post PostgreSQL databases under attack appeared first on Help Net Security.