Threat Actors Exploit Misconfigured Apache Hadoop YARN

The misconfiguration and resulting exposure of cloud services is one of the most prevalent risks in the Linux threat landscape. We previously analyzed incidents related to this security concern, such as an exposed Docker API being abused by threat actors in the wild and exposed Redis instances that threat actors actively search.

This blog post will focus on another piece of the puzzle: Apache Hadoop YARN, a part of the Hadoop framework that is responsible for executing tasks on the cluster.

Read more…
Source: Trend Micro