[Webinar] What Insider Threats Actually Look Like - A Lesson From the Rippling Lawsuit 

[WATCH NOW]

Announcing Permiso Discover - A free identity inventory & visibility for human, non-human and AI

[Join the Waitlist]
Hamburger
Close Icon
Linkedin
Linkedin
Illustration Cloud

Permiso weighs in on CrowdStrike's LemonDuck malware finding

On April 22, Permiso provided their perspective of CrowdStrike’s recent publication on LemonDuck malware shifting targeting to container and cloud technologies in the CSO Online article “Cryptomining botnet targeting Docker on Linux systems”. While crypto mining malware is not typically perceived as a highly sophisticated operation, this does provide a public example of attackers shifting tactics to take advantage of cloud resources, and general lack of detection tooling and expertise in the cloud.

With this version of LemonDuck malware, the initial infection was focused on the Docker API. One of the more interesting facets of this iteration of LemonDuck beyond the Docker targeting is that it specifically disabled Alibaba’s cloud monitoring service endpoint. Learn more about the campaign and see experts weigh in:

Illustration Cloud

Related Articles

Permiso Security Wins 'most promising early-stage Startup' at 2025 SC Awards

Palo Alto, CA – May 1, 2025 — Permiso Security, the leader in real-time identity security, has been honored with the "Most Promising Early-Stage Startup" award at the 2025 SC Awards, announced during the RSA Conference in San Francisco.

Permiso Releases Suite of Open-Source Tools to Bolster Detection Capabilities for Past,Present and Future Attacks

Release Marks Ten Open-Source Tools the Startup Has Launched So Far This Year PALO ALTO, CA – November 7, 2024 - Permiso, the leader in real-time identity security, has released a suite of three open-source tools that help security teams bolster

Survey Reveals Gaping Disconnect Between Existing Security Controls and the Identity Security Threat Reality

Respondents are confident in their identity security posture, despite almost half reporting unauthorized access to their environment coupled with growing concerns over the ability to detect identity-based attacks PALO ALTO, CA – October 17, 2024 -

View more posts