A crypto-mining botnet is using a malicious shell script to steal credentials from Docker and AWS.
Analysts from security firm Trend Micro said in a report that they spotted a malware botnet that collects and steals Docker and AWS credentials.
The researchers have linked the botnet to a cybercrime operation known as TeamTNT, a group first spotted during the 2020 summer installing cryptocurrency-mining malware on misconfigured container platforms and stealing credentials.
You can continue here.