'Librarian Ghouls' Cyberattackers Strike at Night
Since at least December, the advanced persistent threat (APT) group has been using legit tools to steal data, dodge detection, and drop cryptominers on systems belonging to organizations in Russia.
Stay updated on Cryptominer threats. Explore news, trends, and insights on cryptocurrency mining malware in information security. Stay safe online.
Search across headline titles and summaries.
Background for this topic.
Cryptomining software uses computing power to validate cryptocurrency transactions and earn digital coins. When deployed maliciously, cryptomining malware hijacks devices without user consent, exploiting CPU or GPU resources to generate cryptocurrency for attackers. This unauthorized use can affect endpoints, servers, cloud instances, and IoT devices, often spreading through compromised software or exposed services.
From a security perspective, cryptomining malware can degrade system performance, increase power consumption, and cause hardware stress or overheating. Detection relies on monitoring unusual resource usage and network traffic linked to mining pools. Mitigation includes patching vulnerabilities, restricting execution of unauthorized binaries, and applying endpoint protection that identifies mining behaviors. Understanding cryptominer activity helps prioritize incident response and resource allocation in affected environments.
Weekly headline count for the current query.
Since at least December, the advanced persistent threat (APT) group has been using legit tools to steal data, dodge detection, and drop cryptominers on systems belonging to organizations in Russia.
An attacker is using the tool to deploy a cryptominer and the Tsunami DDoS bot on compromised systems.
The adversary is exploiting two known misconfigurations in the big data technologies to drop a Monero cryptominer.
Sophisticated Windows and Linux malware for stealing data and conducting cyber espionage has flown under the radar, disguised as a cryptominer.
The Kinsing threat group has launched more than 1,000 cyberattacks in less than two months, exploiting a security vulnerability in the internal corporate messaging app in order to upload the malware and a cryptominer.
A legitimate installer for the popular Nintendo game infects Windows machines with various malware, including a cryptominer and an infostealer, again showcasing the importance of remote worker security hygiene.
At least 1,200 Redis servers worldwide have been infected with "HeadCrab" cryptominers since 2021.
KmsdBot takes advantage of SSH connections with weak login credentials to mine currency and deplete network resources, as it gains a foothold on enterprise systems.
Cloud security is constantly evolving and consistently different than defending on-premises assets. Denonia, a recently discovered serverless cryptominer drives home the point.
Threat actors are exploiting the vulnerability to drop Web shells and cryptominers, security vendor says.