TeamTNT Using NVIDIA Drivers to Mine Cryptocurrency

Kubernetes deployments have been targeted by attackers as a means to compromise the cloud environment to control workloads and harness the power of the cloud to conduct unauthorized tasks. Earlier research has highlighted how the TeamTNT threat group conducts attacks against large-scale Kubernetes deployments.

ALSO READ:

• International

Look back; The Worst Hacks of 2024

By infosecbulletin / Monday , December 30 2024

In 2024, digital security experienced major breaches as cybercriminals and state-backed groups exploited vulnerabilities for large-scale attacks. These incidents were...

Read More

• Uncategorized

HIPAA to be updated with new cybersecurity regulations, White House

By infosecbulletin / Sunday , December 29 2024

Proposed new cybersecurity rules for healthcare institutions will focus on how they protect user data under HIPAA, as stated by...

Read More

• Bank

New NGate Trojan Drains Bank Accounts via ATMs

By infosecbulletin / Sunday , December 29 2024

Malware analysts at Doctor Web have identified new versions of the NGate banking trojan. This malware steals data from the...

Read More

• Event

CPE Seminar Held at ISACA Dhaka Chapter Office Premises

By infosecbulletin / Saturday , December 28 2024

ISACA Dhaka chapter arranged a Continuing Professional Education (CPE) seminar for the community as its calendar work to develop the...

Read More

• Uncategorized

Update Immediately
Palo Alto Releases Patch for PAN-OS DoS Flaw

By infosecbulletin / Friday , December 27 2024

Palo Alto Networks has revealed a high severity vulnerability in PAN-OS software that may lead to a denial-of-service (DoS) issue...

Read More

• Cyber Attack

Cyberattack Hit Japan Airlines Systems, delaying flights

By infosecbulletin / Friday , December 27 2024

Japan Airlines reported a cyberattack on Thursday that delayed over 20 domestic flights. The airline managed to stop the attack...

Read More

• Data Breach
• Vulnerabilities

Hacker reportedly leak Indonesia Gov.t 82 GB data

By infosecbulletin / Thursday , December 26 2024

Hackers claimed to have accessed and stolen 82 GB of sensitive data from Indonesia's Regional Financial Management Information System (SIPKD)....

Read More

• National

BCSI officially announce National Vulnerability Disclosure Program (NVDP)

By infosecbulletin / Wednesday , December 25 2024

Bangladesh Cyber Security Intelligence (BCSI) officially launch the National Vulnerability Disclosure Program (NVDP) to enhance the country's cybersecurity. This initiative...

Read More

• Alert
• Cyber Attack
• Vulnerabilities

CVE-2024-9474
Researcher unveil sophisticated backdoor in Palo Alto Networks firewalls

By infosecbulletin / Wednesday , December 25 2024

Northwave Cyber Security has found a sophisticated backdoor, LITTLELAMB.WOOLTEA, targeting Palo Alto Networks firewalls. Northwave researcher claimed the backdoor was...

Read More

• Uncategorized

New G-Door Vul Allow Hackers Bypass Microsoft 365 Security With Google Docs

By infosecbulletin / Tuesday , December 24 2024

A newly discovered vulnerability called "G-Door" enables malicious actors to bypass Microsoft 365 security by exploiting unmanaged Google Docs accounts....

Read More

2023 Threat Report: Social Engineering and Web Attacks waves

TeamTNT is known for attacking insecure and vulnerable Kubernetes deployments in order to further enumerate the cloud infrastructure.to infiltrate into organizations’ dedicated environments and transform them into attack launchpads. In this article we present a new module introduced by TeamTNT to utilize NVIDIA’s GPU capabilities by installing associated drivers on compromised pods running in cluster nodes to conduct advanced mining operations. For clarity, no security vulnerability in NVIDIA’s driver is exploited by TeamTNT.

Click here to read full report

Aditya K Sood
Advanced Threat Research Center of Excellence, Office of the CTO, F5

Source: virusbulletin