Unit 42 researchers discovered a new variant of cryptojacking malware named Black-T, authored by TeamTNT. The group is known to target AWS credential files on compromised cloud systems and mine for Monero (XMR) Researchers have discovered several German-language phrases inserted into multiple TeamTnt scripts. Palo Alto Networks Prisma Cloud can assist in securing cloud deployments against the threats posed by the threats. The researchers also found evidence that the authors are now targeting other potential cryptjacking malware.”]
Source: https://unit42.paloaltonetworks.com/black-t-cryptojacking-variant/