Jenkins Vulnerability Exploited to Deliver 'Kerberods' Malware

A vulnerability disclosed late last year has been exploited by malicious actors to deliver a piece of malware that deploys a Monero cryptocurrency miner and looks for new victims on the internet and the local network. According to the SANS Institute’s Internet Storm Center, the attacks involve CVE-2018-1000861, a vulnerability affecting the Stapler HTTP request handling engine, which is used by the Jenkins open source software development automation server. Jenkins developers informed users of the vulnerability and the availability of patches in December 2018, and warned that the flaw could be exploited for various purposes, including by unauthenticated attackers. An ..