Cloud Threat Landscape

Incidents
Actors
Techniques
Defenses
Tools
Targeted Technologies
Posters & Newspapers
About
RSS
STIX
Back to wiz.io

Made with 💙 by Wiz

Last Updated: April 3, 2025

Cloud Threat Landscape

/

/

Dreambus campaign (2021)

Dreambus campaign (2021)

Type

Campaign

Actors

🚌Dreambus operator

Pub. date

January 22, 2021

Initial access

1-day vulnerabilitySoftware misconfig

Impact

Resource hijacking

Observed techniques

SSH propagation Misconfigured Redis abuse Misconfigured PostgreSQL abuse Misconfigured Apache Hadoop abuse Misconfigured Consul abuse

Observed tools

Targeted technologies

PostgreSQL Apache Hadoop Apache Spark Hashicorp Consul Redis SaltStack

References

https://www.zscaler.com/blogs/security-research/dreambus-botnet-technical-analysis

Status

Finalized

Last edited

Jun 5, 2024 9:52 AM

See 🚌Dreambus operator for more information.