Misconfigured Docker API instances have turned into prime targets for a recent malware initiative that converts them into a cryptocurrency mining botnet.
The assaults, aimed at mining Dero currency, are remarkable for their worm-like traits that allow the malware to spread to other vulnerable Docker instances, thereby enlisting them into an expanding swarm of mining bots.
Kaspersky reported that it detected an unknown threat.