GUI-Vil Threat Group Exploits AWS for Crypto Mining
GUI-Vil Threat Group Exploits AWS for Crypto Mining
Threat Level
Attack Report
For a detailed threat advisory, download the pdf file here
Summary
GUI-Vil (p0-LUCR-1), an Indonesian threat group, conducts unauthorized cryptocurrency mining using personalized infiltration tactics. They exploit AWS, leveraging compromised credentials and vulnerabilities like CVE-2021-22205.
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.