Latest Bot Targets Hadoop Clusters

Hadoop clusters are under siege by a recently discovered malware threat designed to take over cloud-based servers as a platform for launching distributed denial-of-service attacks. The malware dubbed DemonBot was reported in a blog post last week by datacenter cybersecurity vendor Radware. 

The company said the malware targets misconfigured Hadoop YARN remote command execution to infect unsecured Hadoop clusters. Radware characterized DemonBot as “unsophisticated” in that it spreads only among central Hadoop servers and lacks the punch of the more pervasive Marai botnet that targeted Internet of Things and other connected devices. Radware previously uncovered a Marai variant called Brickerbot that corrupts device storage while reconfiguring kernel settings.

Author: George Leopold

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s