Security researchers have discovered a cryptocurrency mining operation that targets misconfigured DevOps infrastructure, specifically exploiting HashiCorp Nomad servers, Consul dashboards, Docker APIs, and Gitea code-hosting instances to mine Monero. The attackers utilize publicly available tools to avoid detection and recommend securing these systems to prevent future breaches.