Hackers have breached over 50,000 servers across the world to mine cryptocurrency using unusually sophisticated tools, according to a new report.
Cybersecurity firm Guardicore Labs said on May 29 that the large-scale malware effort - dubbed the "Nansh0u campaign" - has been ongoing since February, and had been spreading to over 700 new victims a day.
The attack mostly targeted firms in the healthcare, telecoms, media and IT sectors.
The firm said it contacted the hosting provider of the attack servers and the issuer of the rootkit certificate.
"As a result, the attack servers were taken down and the certificate was revoked," it said.
Notably, the cybersecurity firm said the attack used sophisticated tools like those used by nation states, a factor that indicates elite digital weaponry is becoming more readily accessible to cyber criminals.
The package was also written using Chinese language tools and placed on Chinese language servers, according to the firm.
"The Nansh0u campaign is not a typical crypto-miner attack. It uses techniques often seen in APTs such as fake certificates and privilege escalation exploits. While advanced attack tools have normally been the property of highly skilled adversaries, this campaign shows that these tools can now easily fall into the hands of less than top-notch attackers."
The firm said the campaign demonstrates that strong credentials are vital in protecting companies' assets.
"This campaign demonstrates once again that common passwords still comprise the weakest link in today's attack flows. Seeing tens of thousands of servers compromised by a simple brute-force attack, we highly recommend that organizations protect their assets with strong credentials as well as network segmentation solutions," the report concluded.
Hackers Infect 50,000 Servers With Sophisticated Crypto Mining Malware
Publicado en Jun 3, 2019
by Coindesk | Publicado en Coinage
Coinage
Noticias recientes
Ver todo
Blockchain Bites: Bitcoin's Run, Uniswap's Hemorrhaging Value, Anchorage's Banking Bid
Bitcoin is nearing all-time highs in price and market cap last set three years ago.
Japan's megabanks to lead experiment with digital yen
We have, in order, Cheese Bank with a $3.3 million theft, Akropolis with its $2 million loss, Value DeFi with a whopping $6 million exploit and finally Origin Protocol's loss of $7 million.
Number of new Bitcoin addresses spikes amid growing FOMO
Japan's three largest banks, as part of a group of 30 private sector actors, are set to collaborate on an experiment with a digital yen.
Not just Wall Street: Quant trader explains why Bitcoin price is going up
Sam Trabucco, a quantitative trader at Alameda Research, believes four general factors are pushing up the price of Bitcoin.