Thousands of enterprise computers have been infected with a cryptojacking malware that installs a Monero mining app.
Listen to article The Blue Mockingbird malware gang has infected more than 1000 business systems with Monero mining malware since December 2019.The global scale of the hacker group's operations was revealed by cloud security firm Red Canary on May 26.The report outlined the group's methodology.
The malware attacks servers running ASP.NET applications and exploits a vulnerability to install a web shell on the attacked computer and obtain administrator-level access to modify the server settings.
Next, the cybercriminals install the XMRRig application to take advantage of the resources of the infected machines.
Most of the infected computers belong to large companies, though Red Canary did not reveal any names.
Remote Desktop Protocol's vulnerabilities As with recent ransomware attacks using Trojans, criminals took advantage of the weakness of the Remote Desktop Protocol in Windows to penetrate systems.
Red Canary also warns that companies that believe themselves to be safe from such attacks are actually at high risk of their security being breached by the malware infection.
"Cybercriminals specifically seek out weaknesses in the internet-facing systems and, when found, exploit them. Companies can significantly reduce their risk factor by following well-established best practices such as timely patching, using MFA, disabling PowerShell when not needed, etc. If those best practices are not adhered to and the internet-facing servers are left vulnerable, it's significantly more likely that a company will experience a crypto-mining, ransomware, data exfiltration or other security event."
Cointelegraph reported in November 2019 that a malware targeted vulnerable Docker instances to deploy the Monero mining app.
In the same year, reports published by the cybersecurity companies Symantec and BlackBerry Cylance warned about the injection of the XMRRig app into computers through music files.
1000 Corporate Systems Infected With Monero Mining Malware
gepubliceerd op May 27, 2020
by Cointele | gepubliceerd op Coinage
Coinage
Recent nieuws
Alles zien
Blockchain Bites: Bitcoin's Run, Uniswap's Hemorrhaging Value, Anchorage's Banking Bid
Bitcoin is nearing all-time highs in price and market cap last set three years ago.
Japan's megabanks to lead experiment with digital yen
We have, in order, Cheese Bank with a $3.3 million theft, Akropolis with its $2 million loss, Value DeFi with a whopping $6 million exploit and finally Origin Protocol's loss of $7 million.
Number of new Bitcoin addresses spikes amid growing FOMO
Japan's three largest banks, as part of a group of 30 private sector actors, are set to collaborate on an experiment with a digital yen.
Not just Wall Street: Quant trader explains why Bitcoin price is going up
Sam Trabucco, a quantitative trader at Alameda Research, believes four general factors are pushing up the price of Bitcoin.