Three open Redis servers out of four are infected with malware, according to experts at Imperva firm. The discovery is the result of analysis conducted by running Redis-based honeypot servers for some months. The experts obtained a list of over 72,000 servers available online by using the shodan query port:6379, over 10,000 of these responded to its scan request without an error, allowing researchers to determine locally installed SSH keys. Over 75% of these servers were using an SSH key associated with a botnet.”]
Source: https://securityaffairs.co/wordpress/73161/hacking/redis-servers-attacks.html