Microsoft warns of an ongoing series of attacks compromising Kubernetes clusters running Kubeflow machine learning (ML) instances to deploy malicious containers that mine for Monero and Ethereum cryptocurrency. The attacks had started towards the end of May when Microsoft security researchers observed a sudden increase in TensorFlow machine learning pod deployments. Attackers use Internet-exposed Kubefl dashboards, which should only be open to local access, to gain initial access to the clusters and deploy the miners. The threat actors deploy at least two separate pods on each of the hacked clusters: one for CPU mining and one for.
Source: https://www.bleepingcomputer.com/news/security/microsoft-warns-of-cryptomining-attacks-on-kubernetes-clusters/