A new type of malware called PG_MEM has been discovered targeting PostgreSQL databases, putting over 800,000 databases at risk.
Overview of PG_MEM Malware
According to Aqua, PG_MEM takes advantage of weak passwords to install cryptocurrency mining software, putting over 800,000 databases at risk.
How PG_MEM Works
PG_MEM works by trying to guess weak passwords to break into databases. Once it gains access, it creates a new user with high-level privileges, installs mining software, and connects to a mining pool, using the infected database’s computing power to mine cryptocurrency.
Increase in Cryptojacking Attacks
Cryptojacking, where malware secretly uses a computer’s power to mine cryptocurrency, has become more common. Reports show that such attacks increased by 400% in the first half of 2023, highlighting the need for better security to protect against these types of threats.
The new PG_MEM malware poses a serious threat to PostgreSQL databases, emphasizing the need for enhanced security measures to protect against these types of attacks.
Comments