Browsing tag
A threat group of suspected Romanian origin called RUBYCARP has been observed maintaining a long-running botnet for carrying out crypto mining, distributed denial-of-service (DDoS), and phishing attacks. The group, believed to be active for at least 10 years, employs the botnet for financial gain, Sysdig said in a report shared with The Hacker News. “Its […]
A 29-year-old Ukrainian national has been arrested in connection with running a “sophisticated cryptojacking scheme,” netting them over $2 million (€1.8 million) in illicit profits. The person, described as the “mastermind” behind the operation, was apprehended in Mykolaiv, Ukraine, on January 9 by the National Police of Ukraine with support from Europol and an unnamed […]
Cybersecurity researchers have identified a new attack that exploits misconfigurations in Apache Hadoop and Flink to deploy cryptocurrency miners within targeted environments. “This attack is particularly intriguing due to the attacker’s use of packers and rootkits to conceal the malware,” Aqua security researchers Nitzan Yaakov and Assaf Morag said in an analysis published earlier this […]
A new Mirai-based botnet called NoaBot is being used by threat actors as part of a crypto mining campaign since the beginning of 2023. “The capabilities of the new botnet, NoaBot, include a wormable self-spreader and an SSH key backdoor to download and execute additional binaries or spread itself to new victims,” Akamai security researcher […]
The threat actors associated with the 8220 Gang have been observed exploiting a high-severity flaw in Oracle WebLogic Server to propagate their malware. The security shortcoming is CVE-2020-14883 (CVSS score: 7.2), a remote code execution bug that could be exploited by authenticated attackers to take over susceptible servers. “This vulnerability allows remote authenticated attackers to […]
Phishing campaigns delivering malware families such as DarkGate and PikaBot are following the same tactics previously used in attacks leveraging the now-defunct QakBot trojan. “These include hijacked email threads as the initial infection, URLs with unique patterns that limit user access, and an infection chain nearly identical to what we have seen with QakBot delivery,” […]
A legitimate Windows tool used for creating software packages called Advanced Installer is being abused by threat actors to drop cryptocurrency-mining malware on infected machines since at least November 2021. “The attacker uses Advanced Installer to package other legitimate software installers, such as Adobe Illustrator, Autodesk 3ds Max, and SketchUp Pro, with malicious scripts and […]
A cryptocurrency mining attack targeting the Linux operating system also involved the use of an open source remote access trojan (RAT) dubbed CHAOS. The threat, which was spotted by Trend Micro in November 2022, remains virtually unchanged in all other aspects, including when it comes to terminating competing malware, security software, and deploying the Monero […]
A threat group that pursues crypto mining and distributed denial-of-service (DDoS) attacks has been linked to a new botnet called Enemybot, which has been discovered enslaving routers and Internet of Things (IoT) devices since last month. “This botnet is mainly derived from Gafgyt‘s source code but has been observed to borrow several modules from Mirai‘s […]
Peter Parker might not be a mastermind cryptocurrency criminal, but the name Spiderman is quickly becoming more associated with the mining landscape. ReasonLabs, a leading provider of cybersecurity prevention and detection software, recently discovered a new form of malware hacking into customer computers in the guise of the latest Spiderman movie. As perhaps the most […]
A previously undocumented Windows malware has infected over 222,000 systems worldwide since at least June 2018, yielding its developer no less than 9,000 Moneros ($2 million) in illegal profits. Dubbed “Crackonosh,” the malware is distributed via illegal, cracked copies of popular software, only to disable antivirus programs installed in the machine and install a coin […]
Hackers are growing, not only in numbers but also in the sophistication of their methods. A malware campaign spotted by BlackBerry Cylance this month suggests the use of WAV audio files being used to hide malicious code, a typical example of steganography. Steganography at work Steganography is a popular technique among hackers to hide malware […]
A citizen of Singapore was arrested in the United States for a large-scale mining operation using robbed identity and credit card data. The 14-count indictment notes that between October 2017 and February 2018 the man, Ho Jun Jia, also known as Matthew Ho, 29, ruled the illicit crypto-mining scheme after a rise in digital coin […]
Avast has managed to take down the Retadup crypto-mining worm disinfecting more than 850,000 computers, with the help of French National Gendarmerie, the antivirus maker announced in a blog post. The security researchers at Avast discovered a design flaw in the communications protocol of Retadup that allowed the team to remove the malware from the […]
The South Korean hackers’ were arrested for injecting malware in the computer of over 6,000 people. The Korean National Police Agency Cyber Bureau and local police have joined efforts to arrest a group of five hackers led by Kim Amu-Gae, 24, which have released 32,435 emails containing a crypto mining malware. These emails were sent […]
As reported on cryptovest a new research from Check Point shows cyber-criminals are increasingly targeting iPhones in crypto-mining attacks. While it never quite took off among consumers, Google Plus is now dead in the water as far as individual users are concerned. The social network is being wound down following the discovery of a bug […]
Adobe Flash is known to be a minefield of vulnerabilities and notorious actors exploit the same from time-to-time. Using fake Adobe Flash update popup on websites is another attack vector often used. Along the similar lines, a recent type of fake Flash update has been uncovered by a security researcher of Palo Alto Networks’ Unit 42 […]
Cybercriminals continue to use illicit methods like cryptojacking to steal money. Cybersecurity expert, Quick Heal, recently revealed the breach of 3 million mobile users between January and May of 2018, a discovery that should remind everyone of the potential dangers. There has been a big increase in cryptojacking malware for mobile devices, a variant which […]
Last year, when The Pirate Bay was first caught mining cryptocurrency without notifying the users, it created lost of havoc in the pirate community. While some supported the decision by calling it a way to assist the website operations, others expressed concern. The Monero cryptocurrency miner has been found to make an appearance once again, according […]
Many investors that want to enter the cryptocurrency market have never traded any form of a financial instrument before. Most of them, however, have some form of knowledge of the stock market. Using lessons learned from the stock market and applying them on the cryptocurrency market is not necessarily a smart move though. This blog […]
According to Check Point’s latest Global Threat Impact index, nearly 23 percent of organizations across the world is affected by the Coinhive – the Crypto-mining malware that drains CPU power to mining malware. The cybersecurity experts found three different variants of crypto-mining, malware and Coinhive ranks on top. Other miners that made their way to the list […]