WatchDog Targets Docker And Redis Servers In New Cryptojacking Campaign
The group targets misconfigured Docker Engine API endpoints with an open port 2375 for accessing daemon in default settings.
Subsequently, it lists or modifies containers and runs arbitrary shell commands.