Comment
Author: Admin | 2025-04-27
Cado Security researchers discovered a new type of malware that targets AWS Lambda environments. The malware, called Denonia, is the first to target AWS Lambda for crypto-mining software.Cado Security found the Denonia malware in their routine cloud environment analysis. Although it is not widely distributed, its existence is proof of bad actors’ interest in cryptocurrency.TeamTNT began targeting Kubernetes clusters in February 2021 with misconfigured Kubelets for cryptojacking. This is i.e., illegally leveraging victims’ computing resources to mine cryptocurrencies like Bitcoin, Ethereum Monero, and others.Tom Olzak, a cybersecurity researcher, says that in addition to laptops, desktops, and servers, the targets of threat actors for cryptojacking could also include gaming consoles and IoT devices as well as Android and iOS devices and environment monitoring devices used within data centers.This is not the first time that crypto-mining malware has been discovered to attack AWS Lambda. TeamTNT’s crypto-malware, called Hildegard was specifically designed for Kubernetes clusters. Trend Micro discovered that cryptocurrency miners are the most common in Linux.Trend Micro’s Linux Threat Report H1 2021 stated that coinmining on Linux was particularly appealing to cybercriminals, as Linux is used in more than a substantial portion of Linux-based cloud environments.The Linux operating system can be found on 100% supercomputers and 50% global websites. 96.3% top one-million web servers and 90% workloads. AWS Linux is also the most popular Linux distro and is used in 17.58% more environments than Ubuntu’s 15.77%.The cloud could theoretically offer unlimited computing power and computing capabilities. It is not surprising that threat actors are keen to attack cloud environments for crypto-mining, and they are now targeting AWS Lambda.AWS Lambda can be used for any computing task including code maintenance, running, web page processing, and API calls. AWS Lambda, which is fully managed and scalable, eliminates the need to have clients take over
Add Comment