Cybersecurity News Cycle: Kubeflow Deployments Targeted in New Crypto-mining Campaign

Making sure your business is protected from cyber threats can be a daunting task to take on.

Making sure your business is protected from cyber threats can be a daunting task to take on. With so many factors involved, it can be difficult to know where to start. At Drawbridge, we have all the tools to keep you protected from cyber threats and keep your company’s data safe. With services like Vulnerability Management, Risk Assessment, Cybersecurity Training and much more, Drawbridge is fully equipped and ready to help you keep your business secure. 

There are a variety of threats that could impact the safety and security of your business. In recent news, Kubeflow workloads have been targeted in a malicious campaign aiming to mine for crypto-currency. The campaign was discovered by Microsoft in May.  

“This is not the first time we see attackers use legitimate images for running their malicious code. Particularly in this case, the existence of TensorFlow images in the cluster makes a lot of sense: It’s not uncommon to find TensorFlow containers in an ML workload. If the images in the cluster are monitored, usage of legitimate images can prevent attackers from being discovered. Also, the TensorFlow image that was used is a convenient method to run GPU tasks using CUDA, which allows the attacker to maximize the mining gains from the host,” Microsoft said in its blog post. Understanding cyber threats like the one above and knowing the best method of action to protect against them isn’t always easy. Drawbridge is ready and willing to assess your situation, adapt your current cybersecurity strategy, and customize our approach to protect you most effectively. Schedule a demo with us today to get started.