Alibaba, a Chinese tech giant has a global presence, with cloud servers used in many parts of the world.
Recently, Alibaba is facing some threats of getting hacked by crypto miner malware which is directly affecting its Elastic Computing Service. The hackers are trying to install malicious packages into the system for their own benefit.
In particular, the ECS service is marketed as offering fast memory, Intel CPUs, and promising low-latency operations. Also, ECS has a protection agent against crypto-miner malware and comes with a pre-installed security agent.
One of the major problems that ECS has is that it doesn’t have a stronghold over the system. It doesn’t have different privilege levels configured on an instance, with all instances offering root access by default. This flaw makes it fairly simple for hackers to hack their system and install any package they want.
“The threat actor has the highest possible privilege upon compromise, including vulnerability exploitation, any misconfiguration issue, weak credentials or data leakage.”According to the reports of Trend Micro
Alibaba is trying really hard to put stronger protection on ECS as it will be get really easy for the hackers to hack the ECS time and again