Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptomining Campaign

Over 1,500 PostgreSQL servers have been compromised as part of a campaign aimed at deploying fileless cryptocurrency miners. Cloud security company Wiz reported that this activity is a variant of a set of intrusions initially identified by Aqua Security in August 2024, involving the use of a malware strain called PG_MEM. This campaign has been attributed to a threat actor tracked by Wiz.