A new campaign by the JINX-0132 hacking group has exposed vulnerabilities in DevOps tools, threatening a significant portion of cloud environments. Experts at Wiz have discovered this group leveraging vulnerabilities in HashiCorp Nomad/Consul, Docker API, and Gitea to execute cryptojacking operations, impacting around 25% of cloud systems. These vulnerable configurations allow the JINX-0132 hackers to deploy mining software like XMRig, exploiting misconfigured setups for illicit cryptocurrency earnings. Wiz researchers emphasize that upgrading these tools with essential security measures can significantly reduce the risk of attack and mitigate this threat, affecting about 5% of exposed DevOps tools directly.