Headcrab malware is targeting Redis servers worldwide to mine Monero

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

HeadCrab is a new and severe malware that is infiltrating and residing on servers worldwide. It is a custom-made Redis-based malware that is undetectable by traditional anti-virus solutions and has compromised at least 1,200 Redis servers. The malware is initiated when the attacker sets a Redis server as a slave server and downloads a malicious Redis module, the HeadCrab malware, onto the slave server.