November 4, 2022
In this video, we showcase Singularity™ Cloud’s extended visibility and capabilities. This demonstration shows Singularity™ Cloud detecting and defending the Diamorphine rootkit, XMRig (a cryptominer), and the spawning of a reverse shell. Singularity™ Cloud protects cloud workloads running in Kubernetes from runtime threats and active exploitation. This scenario is an example of malware deployment (with persistence) through a command injection attack.
Terms:
Command Injection – An attacker can trick a vulnerable application into running arbitrary commands in the security context of the vulnerable application.
DVWA – “Damn Vulnerable Web Application” – an open-source platform for testing and observing common web vulnerabilities.
XMRig – XMRig is a commodity to which hijacks resources for mining cryptocurrency
Diamorphine – an open-source kernel-level rootkit. Diamorphine is supported on multiple LInux kernels, as well as cloud workload environments. The Diamorphine rootkit is utilized by multiple threat actors/groups.
#Diamorphine #XMRig #hacking #XMRig #XDR #security #malware #cryptominer #CWPP
SentinelOne PartnerOne - America's 2025
⛳️ Last week in Pebble Beach the America's best cybersecurity partners came together for our annual PartnerOne summit. Check out…
Just a Sec: Cybersecurity Unfiltered—Fast, Frank, and From the Front Lines
Welcome to the first-ever Just A Sec, a no-holds-barred, quick-fire monthly livestream. It’s cybersecurity like you’ve never heard it before—unfiltered,…
See how our intelligent, autonomous cybersecurity platform harnesses the power of data and AI to protect your organization now and into the future.