Research Saturday 6.4.22
Ep 235 | 6.4.22

LemonDucks evading detection.

Show Notes

Scott Fanning, CrowdStrike's Senior Director of Product Management, Cloud Security, joins Dave to discuss their work on "LemonDuck Targets Docker for Cryptomining Operations." LemonDuck is a well-known cryptomining botnet, and the research suggests attackers are attracted to the monetary gain from the recent boom in cryptocurrency.

LemonDuck was caught trying to disguise its attack against Docker by running an anonymous mining operation by the use of proxy pools. Scott shares how its unknown which organizations have been targeted and just how much cryptocurrency has been stolen.

The research can be found here: