Hackers use the open source framework Salt vulnerability to deploy malicious mining software

According to the blogging platform Ghost, a hacker group used the vulnerability of the infrastructure tool Salt to install crypto mining malware on a company’s server. Mining caused a surge in CPU usage and quickly overloaded most of the company’s systems. Developers have removed the mining malware from their servers and added a new firewall configuration. Salt is an open source framework developed by SaltStack to manage and automate key parts of the company ’s servers. Clients including IBM Cloud, LinkedIn, and eBay use Salt to configure the server, relay messages from the “master server”, and target specific Timetable to issue orders.