Cryptominers Targeting Misconfigured Apache Hadoop and Flink with Rootkit in New Attacks

The attacks leverage a misconfiguration in YARN’s ResourceManager in Hadoop and a misconfiguration in Apache Flink, allowing remote threat actors to execute arbitrary code without authentication.