[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"article-crowdstrike-docker-kubernetes-cryptojacking-zh":3,"article-related-crowdstrike-docker-kubernetes-cryptojacking-zh":30,"series-industry-1021447f-a63b-41f8-b4dc-78c162abf14e":82},{"id":4,"slug":5,"title":6,"content":7,"summary":8,"source":9,"source_url":10,"author":11,"image_url":12,"cover_image":12,"category":13,"language":14,"translated_content":11,"related_article_id":15,"keywords":16,"key_takeaways":22,"views":26,"created_at":27,"published_at":28,"topic_cluster_id":29},"1021447f-a63b-41f8-b4dc-78c162abf14e","crowdstrike-docker-kubernetes-cryptojacking-zh","CrowdStrike 揭露 Docker、Kubernetes 挖礦攻擊","\u003Cp data-speakable=\"summary\">CrowdStrike 透露，一波針對暴露 \u003Ca href=\"\u002Ftag\u002Fdocker\">Docker\u003C\u002Fa> 與 Kubernetes 的挖礦攻擊，正利用容器\u003Ca href=\"\u002Fnews\u002Fuchn-ai-token-gated-infrastructure-template-zh\">基礎設施\u003C\u002Fa>漏洞與域名濫用擴散。\u003C\u002Fp>\u003Cp>這項消息在 \u003Ca href=\"https:\u002F\u002Fwww.kubecon.io\u002F\" target=\"_blank\" rel=\"noopener\">KubeCon + CloudNativeCon North America\u003C\u002Fa> 公布，\u003Ca href=\"https:\u002F\u002Fwww.crowdstrike.com\" target=\"_blank\" rel=\"noopener\">CrowdStrike\u003C\u002Fa> 指出，攻擊者鎖定的是對外開放、但防護不足的容器環境。這不是單一應用被打穿，而是把 Docker 與 Kubernetes 當成整個算力入口。\u003C\u002Fp>\u003Cp>對雲端團隊來說，這類事件的重點不只是「有沒有被挖礦」。更麻煩的是，當攻擊點落在編排層，受影響的通常是整個叢集的資源分配與工作負載可見度。\u003C\u002Fp>\u003Ctable>\u003Cthead>\u003Ctr>\u003Cth>項目\u003C\u002Fth>\u003Cth>數值\u003C\u002Fth>\u003C\u002Ftr>\u003C\u002Fthead>\u003Ctbody>\u003Ctr>\u003Ctd>發表場合\u003C\u002Ftd>\u003Ctd>KubeCon + CloudNativeCon North America\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>目標環境\u003C\u002Ftd>\u003Ctd>Docker、Kubernetes\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>攻擊型態\u003C\u002Ftd>\u003Ctd>Cryptojacking\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>公開時間\u003C\u002Ftd>\u003Ctd>此次會議期間\u003C\u002Ftd>\u003C\u002Ftr>\u003C\u002Ftbody>\u003C\u002Ftable>\u003Ch2>發生了什麼\u003C\u002Fh2>\u003Cp>CrowdStrike 描述的手法，核心是把暴露在網際網路上的容器服務當成入口。攻擊者不一定先碰資料庫或業務系統，而是先找出設定鬆散、權限過大的節點，再把它\u003Ca href=\"\u002Fnews\u002Fopenclaw-small-business-ai-staff-zh\">變成\u003C\u002Fa>挖礦資源。\u003C\u002Fp>\n\u003Cfigure class=\"my-6\">\u003Cimg src=\"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780912068788-qm6z.png\" alt=\"CrowdStrike 揭露 Docker、Kubernetes 挖礦攻擊\" class=\"rounded-xl w-full\" loading=\"lazy\" \u002F>\u003C\u002Ffigure>\n\u003Cp>公司提到，這波活動還結合了隱晦的網域與基礎設施濫用。這代表攻擊者不只在主機上跑惡意程序，也在外部支援鏈上做文章，讓追查來源與封鎖路徑更複雜。\u003C\u002Fp>\u003Cp>從防守角度看，這類案例和傳統挖礦木馬有差別。傳統模式多半是單點感染，但容器環境一旦被打進去，攻擊面會直接擴到多個 workload、namespace，甚至整個叢集。\u003C\u002Fp>\u003Cul>\u003Cli>攻擊目標是暴露的 Docker 與 Kubernetes 基礎設施\u003C\u002Fli>\u003Cli>使用隱晦網域與基礎設施濫用支援挖礦行動\u003C\u002Fli>\u003Cli>風險不只在單一容器，而是編排層與叢集層\u003C\u002Fli>\u003Cli>會議現場公布，顯示容器安全仍是熱門議題\u003C\u002Fli>\u003C\u002Ful>\u003Cp>對已經在生產環境跑叢集的團隊，這也是一個很直接的提醒。影像掃描、runtime policy 很重要，但如果入口對外暴露、存取控制寬鬆、網路衛生不足，攻擊者仍能把你的算力變成他們的礦機。\u003C\u002Fp>\u003Ch2>為什麼重要\u003C\u002Fh2>\u003Cp>Cryptojacking 看起來沒有資料外洩那麼刺眼，但它會實際吃掉 CPU、拉高雲端費用，還可能掩蓋更深層的入侵。對 DevOps 與平台團隊來說，這種成本通常先反映在帳單，再反映在告警。\u003C\u002Fp>\n\u003Cfigure class=\"my-6\">\u003Cimg src=\"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780912069339-599a.png\" alt=\"CrowdStrike 揭露 Docker、Kubernetes 挖礦攻擊\" class=\"rounded-xl w-full\" loading=\"lazy\" \u002F>\u003C\u002Ffigure>\n\u003Cp>在 Kubernetes 裡，這種影響會被放大。因為一個節點被濫用，常常不是只拖慢單一服務，而是讓同一叢集內的多個工作負載一起受影響，排程、擴縮容與資源配額都會開始失真。\u003C\u002Fp>\u003Cp>這也說明，容器安全不能只看映像檔是否乾淨。從對外端點、\u003Ca href=\"\u002Ftag\u002Fapi\">API\u003C\u002Fa> 存取、權限邊界到工作負載行為，都要一起管，否則攻擊者只要拿到控制面或特權容器，就能比防守方更快橫向移動。\u003C\u002Fp>\u003Cp>對產業來說，這類事件反映的是雲原生環境的常態\u003Ca href=\"\u002Fnews\u002Fopenclaw-6-yue-ce-shi-ban-xian-xiu-5-ge-fa-bu-feng-xian-zh\">風險\u003C\u002Fa>：基礎設施越彈性，配置失誤的代價也越高。誰能更快看見異常算力消耗、異常域名流量與權限濫用，誰就更有機會把損失壓在擴散前。\u003C\u002Fp>\u003Cp>真正的問題不是 Docker 或 Kubernetes 能不能被打，而是團隊是否已把「暴露面管理」當成日常工作。當第一個警訊是電費、雲帳單或 CPU 飆高時，通常已經晚了一步。\u003C\u002Fp>","CrowdStrike 在 KubeCon 公布一波針對 Docker 與 Kubernetes 的挖礦攻擊，重點是暴露的容器基礎設施與控制層風險。","cloudnativenow.com","https:\u002F\u002Fcloudnativenow.com\u002Fcategory\u002Fnews\u002Fnews-releases\u002F",null,"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780912068788-qm6z.png","industry","zh","69fe5d52-223d-4ab4-9059-00bdf3d7a9a7",[17,18,19,20,21],"CrowdStrike","Docker","Kubernetes","cryptojacking","container security",[23,24,25],"攻擊者把暴露的 Docker 與 Kubernetes 當成挖礦入口。","風險不只在單一容器，而是整個編排層與叢集資源。","容器安全要同時管入口、權限、網路與工作負載行為。",2,"2026-06-08T09:47:21.114563+00:00","2026-06-08T09:47:21.093+00:00","f2c5fdb9-8e47-498a-ad3d-1e7ab235a0c4",{"tags":31,"relatedLang":41,"relatedPosts":45},[32,34,36,38,39],{"name":19,"slug":33},"kubernetes",{"name":17,"slug":35},"crowdstrike",{"name":21,"slug":37},"container-security",{"name":20,"slug":20},{"name":18,"slug":40},"docker",{"id":15,"slug":42,"title":43,"language":44},"crowdstrike-docker-kubernetes-cryptojacking-campaign-en","CrowdStrike details Docker and Kubernetes cryptojacking","en",[46,52,58,64,70,76],{"id":47,"slug":48,"title":49,"cover_image":50,"image_url":50,"created_at":51,"category":13},"69002c63-177a-4723-9e63-d28506f08edd","openai-ads-sensitive-chats-policy-zh","OpenAI把廣告擋在敏感對話外是對的","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781051578409-en02.png","2026-06-10T00:32:23.404084+00:00",{"id":53,"slug":54,"title":55,"cover_image":56,"image_url":56,"created_at":57,"category":13},"ea98a8c9-ebe1-4258-8a2b-b0d82b25deed","ai-bootlegs-streaming-royalties-stick-figure-zh","AI bootlegs 正在抽走串流版稅","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781050681742-3rdh.png","2026-06-10T00:17:31.017287+00:00",{"id":59,"slug":60,"title":61,"cover_image":62,"image_url":62,"created_at":63,"category":13},"20d0b5fc-a363-481d-86b2-e30276a49e92","amd-microsoft-windows-ml-acceleration-zh","AMD 與 Microsoft 把 Windows ML 推進 GPU 與 N…","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781047980407-vd5p.png","2026-06-09T23:32:31.304436+00:00",{"id":65,"slug":66,"title":67,"cover_image":68,"image_url":68,"created_at":69,"category":13},"9a0692ba-a9c5-42eb-823d-8a0e6e6ae3fc","openai-ipo-filing-turns-hype-into-scrutiny-zh","OpenAI IPO 讓神話變審核","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781042614962-bj12.png","2026-06-09T22:03:04.524304+00:00",{"id":71,"slug":72,"title":73,"cover_image":74,"image_url":74,"created_at":75,"category":13},"40d4f012-36b6-4b8f-b470-30242a0b8483","skatteetaten-public-sector-ai-should-be-judged-by-outcomes-zh","Skatteetaten 證明公部門 AI 應該看成果，不是看噱頭","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781038986405-p8cf.png","2026-06-09T21:02:32.1198+00:00",{"id":77,"slug":78,"title":79,"cover_image":80,"image_url":80,"created_at":81,"category":13},"f937e16b-7b3c-4ec8-b9f6-2b6031c6892c","openai-ipo-filing-wall-street-test-zh","OpenAI IPO 登場，華爾街先看這 5 件事","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781032675072-oq1m.png","2026-06-09T19:17:23.187013+00:00",[83,88,93,98,103,108,113,118,123,128],{"id":84,"slug":85,"title":86,"created_at":87},"ee073da7-28b3-4752-a319-5a501459fb87","ai-in-2026-what-actually-matters-now-zh","2026 AI 真正重要的事","2026-03-26T07:09:12.008134+00:00",{"id":89,"slug":90,"title":91,"created_at":92},"83bd1795-8548-44c9-9a7e-de50a0923f71","trump-ai-framework-power-speech-state-preemption-zh","川普 AI 框架瞄準電力、言論與州權","2026-03-26T07:12:18.695466+00:00",{"id":94,"slug":95,"title":96,"created_at":97},"ea6be18b-c903-4e54-97b7-5f7447a612e0","nvidia-gtc-2026-big-ai-announcements-zh","NVIDIA GTC 2026 重點拆解","2026-03-26T07:14:26.62638+00:00",{"id":99,"slug":100,"title":101,"created_at":102},"4bcec76f-4c36-4daa-909f-54cd702f7c93","claude-users-spreading-out-and-getting-better-zh","Claude 用戶更分散，也更會用","2026-03-26T07:22:52.325888+00:00",{"id":104,"slug":105,"title":106,"created_at":107},"bd903b15-2473-4178-9789-b7557816e535","openclaw-raises-hard-question-for-ai-models-zh","OpenClaw 逼問 AI 模型價值","2026-03-26T07:24:54.707486+00:00",{"id":109,"slug":110,"title":111,"created_at":112},"eeac6b9e-ad9d-4831-8eec-8bba3f9bca6a","gap-google-gemini-checkout-fashion-search-zh","Gap 把結帳搬進 Gemini","2026-03-26T07:28:23.937768+00:00",{"id":114,"slug":115,"title":116,"created_at":117},"0740e53f-605d-4d57-8601-c10beb126f3c","google-pushes-gemini-transition-to-march-2026-zh","Google 把 Gemini 轉換延到 2026 年 3…","2026-03-26T07:30:12.825269+00:00",{"id":119,"slug":120,"title":121,"created_at":122},"e660d801-2421-4529-8fa9-86b82b066990","metas-llama-4-benchmark-scandal-gets-worse-zh","Meta Llama 4 分數風波又擴大","2026-03-26T07:34:21.156421+00:00",{"id":124,"slug":125,"title":126,"created_at":127},"183f9e7c-e143-40bb-a6d5-67ba84a3a8bc","accenture-mistral-ai-sovereign-enterprise-deal-zh","Accenture 攜手 Mistral AI 賣主權 AI","2026-03-26T07:38:14.818906+00:00",{"id":129,"slug":130,"title":131,"created_at":132},"191d9b1b-768a-478c-978c-dd7431a38149","mistral-ai-faces-its-hardest-year-yet-zh","Mistral AI 迎來最硬的一年","2026-03-26T07:40:23.716374+00:00"]