Multiple threat actors are targeting Elasticsearch Clusters
Security Affairs
FEBRUARY 27, 2019
Cisco Talos experts have reported a spike in the attacks that leverage known flaws to compromise unsecured Elasticsearch clusters and use them to mine crypto-currencies. Then the script places its RSA key in the authorized_keys file. ” This behavior has been seen in elastic search error logs going back several years. .
Let's personalize your content