Huge Monero-Mining botnet uncovered

All computing related news (such as security breaches, e.t.c.) go here
Post Reply
π
Site Admin
Posts: 14
Joined: Sat Dec 02, 2017 7:37 pm

Huge Monero-Mining botnet uncovered

Post by π » Thu Feb 01, 2018 9:11 pm

Cryptocurrency-mining botnet ''Smominru" has won attackers approximately 8,900 Monero (a popular Bitcoin-alternative cryptocurrency) which is about $2.8M to $3.6M in US Dollars.
While botnets of this kind, and for this purpose have existed before, the magnitude and sophistication of attackers is unique.

Primary targets were servers running Windows, mostly spread across Russia, India and Taiwan (which in itself is not surprising - there is a noticeable lag in upgrading software & hardware in these countries), what is more interesting is that this malware/virus is based around an NSA exploit ("EternalBlue") which has remained unpatched in thousands of systems despite the fact that it has been widely known that this vulnerability exists and is a serious security issue. This really brings about an important issue in patching widely used products like Windows Servers - how to deliver security updates to end users? Simply having the users take action (as can be demonstrated above) will leave many users vulnerable who simply were unwilling to upgrade, or unaware of the seriousness of the security issue, implement an automatic updating system - and you've just opened a channel for attack. Not to mention that noticing an attack of this kind on a server is especially difficult, on a personal computer you can at least notice if a process is taking up undue amount of processing power by a general slow down of the user interface. Make sure to comment & read the original article (source below).


Source: Threatpost (original article)
microdigi
Posts: 1
Joined: Mon Mar 12, 2018 10:37 am

Re: Huge Monero-Mining botnet uncovered

Post by microdigi » Mon Mar 12, 2018 10:49 am

Primary targets were servers running Windows, mostly spread across Russia, India and Taiwan (which in itself is not surprising - there is a noticeable lag in upgrading software & hardware in these countries), what is more interesting is that this malware/virus is based around an NSA exploit ("EternalBlue") which has remained unpatched in thousands of systems despite the fact that it has been widely known that this vulnerability exists and is a serious security issue. This really brings about an important issue in patching widely used products like Windows Servers - how to deliver security updates to end users? Simply having the users take action (as can be demonstrated above) will leave many users vulnerable who simply were unwilling to upgrade, or unaware of the seriousness of the security issue, implement an automatic updating system - and you've just opened a channel for attack. Not to mention that noticing an attack of this kind on a server is especially difficult, on a personal computer you can at least notice if a process is taking up undue amount of processing power by a general slow down of the user interface. Make sure to comment & read the original article (source below).















































































































































































































[url=http://youtube-promotion-companies-in-b ... vices.html]Youtube Promotion[/url]
[url=http://search-engine-optimization-servi ... anies.html]Top SEO companies in Bangalore[/url]
[url=http://social-media-marketing-in-bangal ... vices.html]social media marketing agencies in Bangalore[/url]
[url=http://sms-marketing-strategy-bangalore ... anies.html]SMS Marketing companies in Bangalore[/url]
[url=http://ppc-management-service-bangalore ... anies.html]Pay Per Click services in Bangalore[/url]
[url=http://online-reputation-management-ser ... anies.html]Online Reputation management Company in Bangalore[/url]
[url=http://digital-marketing-agency-bangalo ... vices.html]Online marketing services in Bangalore[/url]
[url=http://facebook-promotion-companies-in- ... ategy.html]FACEBOOK PROMOTION Companies in Bangalore[/url]
[url=http://email-maketing-services-in-banga ... anies.html]Email Marketing companies in Bangalore[/url]
[url=http://digital-marketing-services-banga ... alore.html]Digital Marketing Services in Bangalore[/url]
Post Reply