Cybersecurity News in Asia

Features
- Featured
  
  The latest threat to e-commerce
  
  Tuesday, July 23, 2024, 9:06 AM Asia/Singapore | Features
- Featured
  
  AI/ML can reduce mundane cybersecurity tasks, but they are not silver bullets
  
  Friday, July 19, 2024, 10:08 AM Asia/Singapore | Features, Opinions
- Featured
  
  Cybersecurity experts warn against Olympics 2024 threats
  
  Thursday, July 18, 2024, 1:39 PM Asia/Singapore | Features, Newsletter
News
- Featured
  
  Chinese organized crime syndicate linked to trillion-dollar criminal activities worldwide
  
  Thursday, July 25, 2024, 4:10 PM Asia/Singapore | News, Newsletter
- Featured
  
  What causes ransomware victims to pay up despite “do not pay” policies?
  
  Thursday, July 25, 2024, 9:11 AM Asia/Singapore | News, Newsletter
- Featured
  
  The day an EDR software update brought down critical infrastructures worldwide
  
  Monday, July 22, 2024, 9:08 AM Asia/Singapore | News, Newsletter
Opinions
Tips
Whitepapers
Awards 2024
Directory
E-Learning

News

Cloud-native apps: fast to deploy, fast to be exploited by malware

By CybersecAsia editors | Tuesday, May 21, 2024, 5:13 PM Asia/Singapore

As the Kinsing malware has shown, threat actors can capitalize on cloud misconfigurations and API vulnerabilities faster than ever

When a malware that targeted cloud native infrastructure was discovered in 2019, it was mostly used to exploit misconfigure application programming interfaces (APIs). By the next year, it had quickly spread to popular cloud native applications globally.

According to one firm that has been studying the malware for years, on average, honeypots targeting Kinsing attracted eight attacks per day, with figures ranging from three to 50 attacks within a 24-hour period. Other known characteristics include:

The ability to swiftly integrate botnet exploits of newly discovered vulnerabilities in popular cloud native applications
A global impact that potentially involves millions of daily attacks
A diverse range of tactics used by threat actors to tailors campaigns to maximize the impact of each attack. For example, Kinsing’s feature set can be adapted to the command interpreter, being more basic on systems running the Bourne shell (sh), and more advanced on environments running the `bash` (Bourne-again shell)
Armed with anonymity, Kinsing exploits vulnerabilities or misconfigurations in applications, executes infection scripts; deploys cryptominers often concealed by rootkits; and maintains control over servers

According to Zhihao Tan, Director of Solution Architects (APJ), Aqua Security, the firm disclosing its research: “Organizations need to recognize that the threat landscape in the world of cloud-native (apps) is very different from what we understood from the past. Due to the nature of how quickly and simply new off-the-shelf apps can be deployed, attackers such as Kinsing (can) exploit misconfigurations and achieve their goals in the victim organization. In such cases, default misconfigurations are exploited without needing the attacker to find an actual software vulnerability in the form of a CVE. As APJ organizations continue their digital transformations and embrace cloud native security solutions, it’s critical that they have a heightened awareness of (such) cybersecurity risks.”

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

2024 Voice of the CISO
The "2024 Voice of the CISO" report by Proofpoint offers insights from a survey of …Download Whitepaper
Securing Industry 4.0
The world is advancing to Industry 4.0 in full swing, and this is a key …Download Whitepaper
To the Power of Proofpoint
Microsoft 365 is indispensable for modern businesses, facilitating remote work, global collaboration, and cloud operations.Download Whitepaper
The 2024 Data Loss Landscape
The 2024 Data Loss Landscape Report by Proofpoint reveals that 85% of organizations have encountered …Download Whitepaper

Middle-sidebar-banner

Case Studies

Eliminating “vault sprawl” helps DCB Bank (India) in more ways than one
Centrally rotating and management credentials in its developer workflows using an identity security platform has …Read more
Nan Fung Group rolls out secure NFC building access app for Apple Wallet users
Tenants of the AIRSIDE office tower in Hong Kong are the first to experience the …Read more
What data-driven organizations need today and in the future
Our data-driven business world needs purpose-built data protection solutions that combine centralized management with a …Read more
How medical devices manufacturer Tuttnauer protects patient and personal-data safety
In running a cloud-based portal to link its smart medical equipment, the firm has also …Read more

Cybersecurity News in Asia

Featured

The latest threat to e-commerce

Featured

AI/ML can reduce mundane cybersecurity tasks, but they are not silver bullets

Featured

Cybersecurity experts warn against Olympics 2024 threats

Featured

Chinese organized crime syndicate linked to trillion-dollar criminal activities worldwide

Featured

What causes ransomware victims to pay up despite “do not pay” policies?

Featured

The day an EDR software update brought down critical infrastructures worldwide

Cloud-native apps: fast to deploy, fast to be exploited by malware

As the Kinsing malware has shown, threat actors can capitalize on cloud misconfigurations and API vulnerabilities faster than ever

Related Posts

Leave a reply Cancel reply

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Middle-sidebar-banner

Case Studies

Bottom sidebar