All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Stealth Crypto Miner Discovered in qBittorrent Docker Container

By

tatoalo

8mo ago· 1 min readenInsight
Bagel score 65 of 100
65/100
Toasty
Bagelometer

Crusty in the right places. Worth the chew.

Score65TypeanalysisSentimentnegative

Summary

A developer discovered a stealth crypto miner running inside a hotio/qbittorrent Docker container while migrating to a new server. The suspicious process called 'netservlet' was consuming unusually high CPU resources and had been unlinked from the filesystem, making it difficult to inspect directly. The investigation revealed a compromised container image being used for cryptocurrency mining.

Key quotes

· 4 pulled
Recently, while migrating to a new server, I discovered a suspicious process running inside a hotio/qbittorrent Docker container.
While monitoring system resources, I noticed a process consuming unusually high CPU.
The binary netservlet was unfamiliar, and attempts to inspect it via /proc failed.
This indicates the binary was likely unlinked from the filesystem, pretty much as expected.
Snippet from the RSS feed
Short investigation into a stealth crypto miner running in a qbittorrent container

You might also wanna read

Microsoft uncovers cryptojacking campaign using SEO poisoning and AI chatbots to target high-GPU users via fake utility downloads

Microsoft Defender Experts identified an active cryptojacking campaign that uses SEO poisoning and AI chatbot manipulation to distribute mal

microsoft.com·5d ago