Cryptocurrency Archives

Denonia malware targets AWS Lambda

Cloud Security, Cybersecurity Attacks, Malware / By Frank Crast / April 8, 2022 / AWS, Cado Labs, Cryptocurrency, Cryptomining, Denonia, Lambda, XMRig

A first of its kind malware dubbed Denonia has been targeting Amazon Web Services (AWS) Lambda, an event-driven, serverless computing platform.

SQL Server malware “MrbMiner” attacks

Cloud Security, Cybersecurity Attacks, Malware, Network Security / By Frank Crast / January 25, 2021 / Cryptocurrency, Cryptomining, Database, MrbMiner, SQL Server

Security researchers have identified the source of a SQL Server malware “MrbMiner” attacks allegedly tied to an Iranian software firm.

ElectroRAT malware zaps thousands of systems to empty cryptocurrency wallets

Cybersecurity Attacks, Malware / By Frank Crast / January 5, 2021 / Cryptocurrency, DaoPoker, ElectroRAT, eTrade, Jamm, malware

Security researchers have discovered a new ElectroRAT malware that empties cryptocurrency wallets on thousands of macOS, Linux and Windows systems.

2020 Threat Landscape Report reveals new themes and evolving threats

Cybersecurity Articles, Cybersecurity Attacks, Internet of Things (IoT), Malware / By Frank Crast / September 13, 2020 / AgentTesla, Android, banking, Coronavirus, COVID-19, Cryptocurrency, Dridex, Emotet, EOL, Fileless, FritzFrog, IOT, KryptoCibule, Maze, Snake, Trickbot, VPN

Security firm Bitdefender published its mid-year Threat Landscape Report 2020 that reveals how cybersecurity threats and malware play on the pandemic theme.

KryptoCibule malware: triple threat to cryptocurrencies

Cybersecurity Attacks, Malware / By Frank Crast / September 3, 2020 / Avast, BitTorrent, Cryptocurrency, Czech Republic, ESET, KryptoCibule, malware, Slovakia

Security researchers have discovered a new malware dubbed KryptoCibule that poses a triple threat to victim’s cryptocurrency resources. Attackers are using KryptoCibule to abuse victim’s resources to mine coins, hijack cryptocurrency transactions and exfiltrate cryptocurrency-related files. The name KryptoCibule derives from the Czech and Slovak words for “crypto” and “onion” respectively. According to ESET researchers, …

KryptoCibule malware: triple threat to cryptocurrencies Read More »

Doki malware targets exposed Docker servers in the cloud

Cloud Security, Configuration Management, Cybersecurity Attacks / By Frank Crast / July 29, 2020 / blockchain, C2, Cloud, Container, Cryptocurrency, Docker, Intezer, Linux, Ngrok

Security researchers at Intezer Labs detected a new Linux malware dubbed “Doki” and cyber attack that uses blockchain wallet for generating command and control (C2) domain names.

Watchbog targets unpatched systems

Malware, Vulnerabilities & Exploits / By Frank Crast / September 13, 2019 / C2, Cryptocurrency, Cryptomining, CSIRS, CVE-2018-1000861, malware, Monero, Pastebin, Watchbog

Security experts have uncovered an incident that involved the Watchbog cryptomining botnet. Attackers exploited CVE-2018-1000861 to establish a foothold on the victim’s network and install Watchbog malware on unpatched systems.

Joint effort neutralizes Retadup worm that infected 850k systems

Malware / By Frank Crast / August 28, 2019 / Cryptocurrency, Cybercrime, malware, Ransomware, Retadup

A joint effort between security firm Avast and a French cybercrime unit C3N has taken down a malicious worm dubbed Retadup that has affected thousands of machines.

Oracle WebLogic Server vulnerability exploited to install cryptocurrency miner

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / June 11, 2019 / Cryptocurrency, CVE-2019-2725, Monero, Oracle, WebLogic

Researchers at Trend Micro have discovered bad actors exploiting an Oracle WebLogic Server deserialization vulnerability CVE-2019-2725 to install a Monero cryptocurrency miner.

Electrum DDoS botnet infects over 150K hosts

Cybersecurity Attacks, Phishing, Vulnerabilities & Exploits / By Frank Crast / April 30, 2019 / Bitcoin, Cryptocurrency, DDoS, Electrum

Hackers have infected nearly 152,000 hosts with a Distributed Denial of Service (DDoS) botnet targeting Electrum developers and their servers.