Siloscape, dubbed Silo escape, is the first known malware to target Windows containers. The malware breaks out of Kubernetes clusters to plant backdoors and raid nodes for credentials. The campaign has been active for over a year, Unit 42 security researcher Daniel Prizmant says. He determined the campaign s start date Jan. 12, 2020 by gleaning the creation date of the server that it s coming from. The heavy use of obfuscation made it a chore to reverse-engineer.
Source: https://threatpost.com/windows-containers-malware-targets-kubernetes/166692/