Aqua Blog

Idan Revivo

Threat Alert: Fileless Malware Executing in Containers

Threat Alert: Fileless Malware Executing in Containers

Picture of Idan Revivo Picture of Assaf Morag
Idan Revivo Assaf Morag
December 02, 2020

Our cyber research team detected a new type of attack that executes and runs malware straight from memory in containers, thus evading common defenses and static scanning. This malware is using a rootkit to hide its running processes, then hijacks resources by executing a crypto miner from memory — leaving a backdoor …

Continue reading ›
Crypto-Mining Malware Outsmarting Image Scanners

Crypto-Mining Malware Outsmarting Image Scanners

Picture of Idan Revivo
Idan Revivo
July 08, 2019

In previous crypto-mining attacks, we observed hackers investing little to no effort in hiding their malicious activities. They just ran the malicious container with all of its scripts and configuration files in clear text. This made the analysis of their malicious intent fairly easy.

Continue reading ›
All posts

Subscribe to Email Updates

Popular Posts

Filter by Topic

Show more...

    Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and accelerate their digital transformations. The Aqua Platform is the leading Cloud Native Application Protection Platform (CNAPP) and provides prevention, detection, and response automation across the entire application lifecycle to secure the supply chain, secure cloud infrastructure and secure running workloads wherever they are deployed.

    Aqua customers are among the world’s largest enterprises in financial services, software, media, manufacturing and retail, with implementations across a broad range of cloud providers and modern technology stacks spanning containers, serverless functions and cloud VMs.

Copyright © 2023 Aqua Security Software Ltd.