The miner exploits a disputed Postgres remote code-execution vulnerability to compromise database servers. Researchers at Palo Alto Networks Unit 42 said this could be the first-ever cryptominer that targets the platform. The miner (dubbed PGMiner ) exploits CVE-2019-9193 in Postgres, also known as Postgres. The malware uses a copy from program feature to download and launch the coin-mining scripts, researchers said.
Source: https://threatpost.com/pgminer-monero-mining-botnet/162209/