CyberWire Daily AMBERSQUID hides in the depths. [Research Saturday]
Oct 21, 2023
Sysdig's researchers discuss their work on the AMBERSQUID Cloud-Native Cryptojacking Operation, targeting supposedly secure AWS services. The operation exploits services without triggering AWS resource approval, posing challenges in finding and eliminating miners. The podcast covers the tactics and strategies used by attackers for crypto mining, the challenges of detecting malicious services in AWS environments, and highlights the research conducted by Sysdig.
Chapters
Transcript
Episode notes
1 2 3 4 5
Introduction
00:00 • 4min
Exploiting AWS Services for Crypto Mining Operation
03:48 • 3min
Attackers' Tactics and Strategies for Cryptocurrency Mining
06:38 • 4min
Challenges of detecting malicious services in AWS environments
10:55 • 3min
AWS's Hidden Threat: Amber Squid, cloud native crypto jacking operation
13:44 • 3min