New cryptojacking campaign that's targeting public DevOps web servers associated with Docker, Gitea, and HashiCorp Consul and Nomad to mine cryptocurrencies. The attackers are exploiting known misconfigurations and vulnerabilities to deliver the payload. This may be the first publicly documented instance of Nomad misconfigurations being exploited as an attack vector in the wild.