[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"article-crowdstrike-docker-kubernetes-cryptojacking-zh":3,"article-related-crowdstrike-docker-kubernetes-cryptojacking-zh":30,"series-industry-1021447f-a63b-41f8-b4dc-78c162abf14e":82},{"id":4,"slug":5,"title":6,"content":7,"summary":8,"source":9,"source_url":10,"author":11,"image_url":12,"cover_image":12,"category":13,"language":14,"translated_content":11,"related_article_id":15,"keywords":16,"key_takeaways":22,"views":26,"created_at":27,"published_at":28,"topic_cluster_id":29},"1021447f-a63b-41f8-b4dc-78c162abf14e","crowdstrike-docker-kubernetes-cryptojacking-zh","CrowdStrike 揭露 Docker、Kubernetes 挖礦攻擊","\u003Cp data-speakable=\"summary\">CrowdStrike 透露，一波針對暴露 \u003Ca href=\"\u002Ftag\u002Fdocker\">Docker\u003C\u002Fa> 與 Kubernetes 的挖礦攻擊，正利用容器\u003Ca href=\"\u002Fnews\u002Fuchn-ai-token-gated-infrastructure-template-zh\">基礎設施\u003C\u002Fa>漏洞與域名濫用擴散。\u003C\u002Fp>\u003Cp>這項消息在 \u003Ca href=\"https:\u002F\u002Fwww.kubecon.io\u002F\" target=\"_blank\" rel=\"noopener\">KubeCon + CloudNativeCon North America\u003C\u002Fa> 公布，\u003Ca href=\"https:\u002F\u002Fwww.crowdstrike.com\" target=\"_blank\" rel=\"noopener\">CrowdStrike\u003C\u002Fa> 指出，攻擊者鎖定的是對外開放、但防護不足的容器環境。這不是單一應用被打穿，而是把 Docker 與 Kubernetes 當成整個算力入口。\u003C\u002Fp>\u003Cp>對雲端團隊來說，這類事件的重點不只是「有沒有被挖礦」。更麻煩的是，當攻擊點落在編排層，受影響的通常是整個叢集的資源分配與工作負載可見度。\u003C\u002Fp>\u003Ctable>\u003Cthead>\u003Ctr>\u003Cth>項目\u003C\u002Fth>\u003Cth>數值\u003C\u002Fth>\u003C\u002Ftr>\u003C\u002Fthead>\u003Ctbody>\u003Ctr>\u003Ctd>發表場合\u003C\u002Ftd>\u003Ctd>KubeCon + CloudNativeCon North America\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>目標環境\u003C\u002Ftd>\u003Ctd>Docker、Kubernetes\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>攻擊型態\u003C\u002Ftd>\u003Ctd>Cryptojacking\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>公開時間\u003C\u002Ftd>\u003Ctd>此次會議期間\u003C\u002Ftd>\u003C\u002Ftr>\u003C\u002Ftbody>\u003C\u002Ftable>\u003Ch2>發生了什麼\u003C\u002Fh2>\u003Cp>CrowdStrike 描述的手法，核心是把暴露在網際網路上的容器服務當成入口。攻擊者不一定先碰資料庫或業務系統，而是先找出設定鬆散、權限過大的節點，再把它\u003Ca href=\"\u002Fnews\u002Fopenclaw-small-business-ai-staff-zh\">變成\u003C\u002Fa>挖礦資源。\u003C\u002Fp>\n\u003Cfigure class=\"my-6\">\u003Cimg src=\"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780912068788-qm6z.png\" alt=\"CrowdStrike 揭露 Docker、Kubernetes 挖礦攻擊\" class=\"rounded-xl w-full\" loading=\"lazy\" \u002F>\u003C\u002Ffigure>\n\u003Cp>公司提到，這波活動還結合了隱晦的網域與基礎設施濫用。這代表攻擊者不只在主機上跑惡意程序，也在外部支援鏈上做文章，讓追查來源與封鎖路徑更複雜。\u003C\u002Fp>\u003Cp>從防守角度看，這類案例和傳統挖礦木馬有差別。傳統模式多半是單點感染，但容器環境一旦被打進去，攻擊面會直接擴到多個 workload、namespace，甚至整個叢集。\u003C\u002Fp>\u003Cul>\u003Cli>攻擊目標是暴露的 Docker 與 Kubernetes 基礎設施\u003C\u002Fli>\u003Cli>使用隱晦網域與基礎設施濫用支援挖礦行動\u003C\u002Fli>\u003Cli>風險不只在單一容器，而是編排層與叢集層\u003C\u002Fli>\u003Cli>會議現場公布，顯示容器安全仍是熱門議題\u003C\u002Fli>\u003C\u002Ful>\u003Cp>對已經在生產環境跑叢集的團隊，這也是一個很直接的提醒。影像掃描、runtime policy 很重要，但如果入口對外暴露、存取控制寬鬆、網路衛生不足，攻擊者仍能把你的算力變成他們的礦機。\u003C\u002Fp>\u003Ch2>為什麼重要\u003C\u002Fh2>\u003Cp>Cryptojacking 看起來沒有資料外洩那麼刺眼，但它會實際吃掉 CPU、拉高雲端費用，還可能掩蓋更深層的入侵。對 DevOps 與平台團隊來說，這種成本通常先反映在帳單，再反映在告警。\u003C\u002Fp>\n\u003Cfigure class=\"my-6\">\u003Cimg src=\"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780912069339-599a.png\" alt=\"CrowdStrike 揭露 Docker、Kubernetes 挖礦攻擊\" class=\"rounded-xl w-full\" loading=\"lazy\" \u002F>\u003C\u002Ffigure>\n\u003Cp>在 Kubernetes 裡，這種影響會被放大。因為一個節點被濫用，常常不是只拖慢單一服務，而是讓同一叢集內的多個工作負載一起受影響，排程、擴縮容與資源配額都會開始失真。\u003C\u002Fp>\u003Cp>這也說明，容器安全不能只看映像檔是否乾淨。從對外端點、\u003Ca href=\"\u002Ftag\u002Fapi\">API\u003C\u002Fa> 存取、權限邊界到工作負載行為，都要一起管，否則攻擊者只要拿到控制面或特權容器，就能比防守方更快橫向移動。\u003C\u002Fp>\u003Cp>對產業來說，這類事件反映的是雲原生環境的常態\u003Ca href=\"\u002Fnews\u002Fopenclaw-6-yue-ce-shi-ban-xian-xiu-5-ge-fa-bu-feng-xian-zh\">風險\u003C\u002Fa>：基礎設施越彈性，配置失誤的代價也越高。誰能更快看見異常算力消耗、異常域名流量與權限濫用，誰就更有機會把損失壓在擴散前。\u003C\u002Fp>\u003Cp>真正的問題不是 Docker 或 Kubernetes 能不能被打，而是團隊是否已把「暴露面管理」當成日常工作。當第一個警訊是電費、雲帳單或 CPU 飆高時，通常已經晚了一步。\u003C\u002Fp>","CrowdStrike 在 KubeCon 公布一波針對 Docker 與 Kubernetes 的挖礦攻擊，重點是暴露的容器基礎設施與控制層風險。","cloudnativenow.com","https:\u002F\u002Fcloudnativenow.com\u002Fcategory\u002Fnews\u002Fnews-releases\u002F",null,"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780912068788-qm6z.png","industry","zh","69fe5d52-223d-4ab4-9059-00bdf3d7a9a7",[17,18,19,20,21],"CrowdStrike","Docker","Kubernetes","cryptojacking","container security",[23,24,25],"攻擊者把暴露的 Docker 與 Kubernetes 當成挖礦入口。","風險不只在單一容器，而是整個編排層與叢集資源。","容器安全要同時管入口、權限、網路與工作負載行為。",0,"2026-06-08T09:47:21.114563+00:00","2026-06-08T09:47:21.093+00:00","f2c5fdb9-8e47-498a-ad3d-1e7ab235a0c4",{"tags":31,"relatedLang":41,"relatedPosts":45},[32,34,36,38,39],{"name":19,"slug":33},"kubernetes",{"name":17,"slug":35},"crowdstrike",{"name":21,"slug":37},"container-security",{"name":20,"slug":20},{"name":18,"slug":40},"docker",{"id":15,"slug":42,"title":43,"language":44},"crowdstrike-docker-kubernetes-cryptojacking-campaign-en","CrowdStrike details Docker and Kubernetes cryptojacking","en",[46,52,58,64,70,76],{"id":47,"slug":48,"title":49,"cover_image":50,"image_url":50,"created_at":51,"category":13},"05e420cf-7993-49c9-b005-17a3ce707432","cloudflare-ai-agent-bet-anthropic-partnership-zh","Cloudflare 把 AI agent 變成股價主軸","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780920180542-zjgl.png","2026-06-08T12:02:31.601499+00:00",{"id":53,"slug":54,"title":55,"cover_image":56,"image_url":56,"created_at":57,"category":13},"4ff0b94c-907b-45e9-9151-423acbffaa74","dc-splits-ai-crypto-oversight-paths-zh","D.C. 把 AI 與 crypto 分開管","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780919297819-ibi7.png","2026-06-08T11:47:48.040403+00:00",{"id":59,"slug":60,"title":61,"cover_image":62,"image_url":62,"created_at":63,"category":13},"81c43fcc-28e7-4ee9-9f74-fbbf6c18ff86","microsoft-openai-split-already-visible-zh","4 個訊號看懂 Microsoft 與 OpenAI 漸行漸遠","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780913879552-yfqn.png","2026-06-08T10:17:19.041546+00:00",{"id":65,"slug":66,"title":67,"cover_image":68,"image_url":68,"created_at":69,"category":13},"1a27d4e0-1fa2-44d8-b0fa-ed45f33660c9","oracle-oke-kubernetes-support-schedule-zh","Oracle OKE 的 Kubernetes 支援節奏","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780912976158-zpsu.png","2026-06-08T10:02:25.111162+00:00",{"id":71,"slug":72,"title":73,"cover_image":74,"image_url":74,"created_at":75,"category":13},"962478b8-9498-4678-9a6d-57737cb61e75","fets-rally-is-a-sector-trade-not-conviction-bet-zh","FET 的反彈是板塊交易，不是信念下注","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780911170287-3n4n.png","2026-06-08T09:32:20.683549+00:00",{"id":77,"slug":78,"title":79,"cover_image":80,"image_url":80,"created_at":81,"category":13},"2c2164b3-25ea-4225-af7a-271f474ee158","60b-spacex-cursor-deal-ai-cash-burn-zh","SpaceX 擬 600 億收購 Cursor","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780908474341-0zt5.png","2026-06-08T08:47:21.225735+00:00",[83,88,93,98,103,108,113,118,123,128],{"id":84,"slug":85,"title":86,"created_at":87},"ee073da7-28b3-4752-a319-5a501459fb87","ai-in-2026-what-actually-matters-now-zh","2026 AI 真正重要的事","2026-03-26T07:09:12.008134+00:00",{"id":89,"slug":90,"title":91,"created_at":92},"83bd1795-8548-44c9-9a7e-de50a0923f71","trump-ai-framework-power-speech-state-preemption-zh","川普 AI 框架瞄準電力、言論與州權","2026-03-26T07:12:18.695466+00:00",{"id":94,"slug":95,"title":96,"created_at":97},"ea6be18b-c903-4e54-97b7-5f7447a612e0","nvidia-gtc-2026-big-ai-announcements-zh","NVIDIA GTC 2026 重點拆解","2026-03-26T07:14:26.62638+00:00",{"id":99,"slug":100,"title":101,"created_at":102},"4bcec76f-4c36-4daa-909f-54cd702f7c93","claude-users-spreading-out-and-getting-better-zh","Claude 用戶更分散，也更會用","2026-03-26T07:22:52.325888+00:00",{"id":104,"slug":105,"title":106,"created_at":107},"bd903b15-2473-4178-9789-b7557816e535","openclaw-raises-hard-question-for-ai-models-zh","OpenClaw 逼問 AI 模型價值","2026-03-26T07:24:54.707486+00:00",{"id":109,"slug":110,"title":111,"created_at":112},"eeac6b9e-ad9d-4831-8eec-8bba3f9bca6a","gap-google-gemini-checkout-fashion-search-zh","Gap 把結帳搬進 Gemini","2026-03-26T07:28:23.937768+00:00",{"id":114,"slug":115,"title":116,"created_at":117},"0740e53f-605d-4d57-8601-c10beb126f3c","google-pushes-gemini-transition-to-march-2026-zh","Google 把 Gemini 轉換延到 2026 年 3…","2026-03-26T07:30:12.825269+00:00",{"id":119,"slug":120,"title":121,"created_at":122},"e660d801-2421-4529-8fa9-86b82b066990","metas-llama-4-benchmark-scandal-gets-worse-zh","Meta Llama 4 分數風波又擴大","2026-03-26T07:34:21.156421+00:00",{"id":124,"slug":125,"title":126,"created_at":127},"183f9e7c-e143-40bb-a6d5-67ba84a3a8bc","accenture-mistral-ai-sovereign-enterprise-deal-zh","Accenture 攜手 Mistral AI 賣主權 AI","2026-03-26T07:38:14.818906+00:00",{"id":129,"slug":130,"title":131,"created_at":132},"191d9b1b-768a-478c-978c-dd7431a38149","mistral-ai-faces-its-hardest-year-yet-zh","Mistral AI 迎來最硬的一年","2026-03-26T07:40:23.716374+00:00"]