April 23, 2025 By Pierluigi Paganini
New malware campaign targets Docker environments using unknown methods to secretly mine cryptocurrency, researchers warn.
Researchers from Darktrace and Cado Security have spotted a malware campaign that targets Docker environments with a novel technique to mine cryptocurrency.
The malware campaign targets Docker environments to deploy a malicious node connected to Teneo, a decentralized infrastructure network. Teneo allows users to earn rewards (Teneo Points) by running Community Nodes that scrape public data from social platforms like Facebook, X, Reddit, and TikTok. These points can be converted to $TENEO tokens. The malware covertly monetizes social media bandwidth via this mechanism.
The attack chain begins with a request to launch a container from Docker Hub, specifically the kazutod/tene:ten image.