Cybercriminals Target Developers' Ethereum Wallets and Docker API Servers with SRBMiner and Perfctl Malware

Recent reports indicate a surge in cybercriminal activities targeting developers' Ethereum wallets and Docker API servers. Malicious npm packages have been identified that exploit vulnerabilities to implant SSH backdoors, potentially compromising users' wallets. Additionally, cybercriminals are leveraging Docker remote API servers to deploy SRBMiner crypto mining malware, as highlighted by various cybersecurity sources. The exploitation of gRPC and HTTP/2 protocols has also been noted in these cryptojacking incidents, raising concerns over security practices within organizations. The Perfctl malware has emerged as a significant threat in this context, further emphasizing the need for enhanced security measures in the tech community.