Cryptomining Malware Fuels Most Remote Code Execution Attacks: Investigate

Malware attacks proceed to garner a good overeenkomst of attention te the tech world. Brief for “malicious software,” its intent is to harm or disable computers and pc systems.

Now researchers from the cyber security rigid Imperva say they have found the source of 90 procent of remote code execution attacks te December 2018: cryptomining malware. Te a blog postbode dated February 20, 2018, Imperva assesses the latest spike ter cryptomining malware attacks. They specifically examine the amount of money the brazen attackers are walking away with, while providing risk management advice to organizations seeking to steer clear of them.

Below are some of the key findings:

  • Cryptomining malware results te denial of service to the infected server. When most of the server’s computational power is directed to cryptomining, the server can be rendered unavailable.

Varun Badhwar , a security pro and CEO and co-founder of cloud threat defense company RedLock, noted te an emailed statement to Bitcoin Tijdschrift that the skyrocketing value of cryptocurrencies has captured the attention of audiences around the world, including hackers. He believes that it is becoming far more lucrative for hackers to steal computing power for mining cryptocurrencies than to steal gegevens.

Badhwar also notes that wij are observing cryptojacking attacks on organizations to leverage the computational power within their networks. This is a much stealthier tactic since the activity often goes unnoticed at large organizations where there is remnant or underutilized computing resources.

He cites a number of cryptomining incidents that the RedLock research team has already uncovered within AWS and Azure environments belonging to large multinational organizations such spil Gemalto and Aviva.

He sees all of this is just the peak of the iceberg and believes that this type of cybercrime will increase ter scale and velocity te the near future.

“The primary attack vector for thesis attacks is compromised credentials which are used to infiltrate environments, spin up compute instances and perform mining operations. Spil a result, organizations should institute stringent user access policies and vigilantly monitor user activities for anomalous behavior,” says Badhwar.

Nick Bilogorskiy, Cybersecurity Strategist at Juniper Networks , added te an email response to Bitcoin Tijdschrift : “The story with cryptomining malware and cryptojacking is truly about Monero and Electroneum. Bitcoin mining difficulty is already too high and it cannot be mined effectively on CPUs, only on special purpose hardware.”

Bilogorskiy says that the price of thesis cryptos has more than doubled te the last three months, which makes mining it even more profitable. It also helps, he says, that Monero, like Dash and ZCash, are private coins, making them practically untraceable and “safe” for criminals to use.

Laments Bilogorskiy: “Cryptomining malware permits attackers to monetize the power of computers that they have compromised. Cryptojacking permits them to reach an even larger scale by taking overheen the browsers of webstek visitors.”

He concludes: “Increasingly, the energy and the CPU processing power is becoming the fresh currency of the dark side of the internet. Thesis fresh crypto attacks are like leeches, sucking the power out of our homes and businesses, crashing computers and melting our phone batteries.”

Related movie: How to Mine Electroneum for Beginners (Windows)


Leave a Reply

Your email address will not be published. Required fields are marked *