Satoshi Nakamoto Blog
Image default
Altcoin Bitcoin Cash 101 Cryptojacking cybercrime cybersecurity linux Malware Security

Linux-Targeting Cryptojacking Malware Disables Cloud-Based Security Measures: Report



A new cryptojacking malware has the ability to disable cloud-based security measures to avoid detection on Linux servers, research by information security company Palo Alto Networks Jan. 17 reveals.

The malware in question mines Monero (XMR) and is reportedly a modified version of one used by the so-called “Rocke” group, originally discovered by cybersecurity firm Talos in August last year. According to the research, one of the first things that the malware does is check for other cryptocurrency mining processes and add firewall rules to block any other cryptojacking malware.

The virus reportedly also searches for cloud security services by Chinese internet giants Tencent and Alibaba and neutralizes them in an attempt to remain concealed. Ryan Olson, vice president for threat intelligence at Palo Alto Networks explained:

“This evolution indicates that attackers who are compromising hosts operating in cloud platforms are now attempting to evade security products that are specific to those platforms.”

The virus also reportedly takes advantage of known vulnerabilities in older versions of Apache Struts 2, Oracle WebLogic and Adobe ColdFusion to infect the systems. Still, keeping the software updated to the latest version prevents the attack, according to the report.

As Cointelegraph reported in December last year, cryptojacking malware activity rose by over 4000 percent in 2018, according to a new quarterly report published by cybersecurity firm McAfee Labs.

According to another report published the same month, 415,000 MikroTik routers had been affected by cryptojacking malware at that time, double the number of infected devices since last summer.



Source link

Related posts

Blockchain Will ‘Take a Little Longer’ to Develop Than the Web

satoshi

Rivetz to deliver military-grade blockchain asset protection for Ferrum Network

satoshi

Automated Tuning Of Linux Audio

satoshi

Stanford Researchers Develop Privacy Mechanism for Ethereum Smart Contract

satoshi

0patch beats Microsoft to patching Windows 10 task scheduler 0-day vulnerability

satoshi

WB21 bank boss faces lawsuit by US regulator – FinTech Futures

satoshi