2019 and Mining - Information Management Today

CoinHive Cryptocurrency Mining Service will shut down on March 8, 2019

Security Affairs

FEBRUARY 28, 2019

The popular in-browser cryptocurrency mining service Coinhive has announced that it will shut down on March 8, 2019. Security firms spotted several hacking campaigns aimed at compromising websites to install JavaScript-based Monero (XMR) cryptocurrency mining scripts and monetize their efforts. Pierluigi Paganini.

Mining

Mining Marketing Access Security

Blue Mockingbird Monero-Mining campaign targets web apps

Security Affairs

MAY 10, 2020

Crooks exploit CVE-2019-18935 deserialization vulnerability to achieve remote code execution in Blue Mockingbird Monero-Mining campaign. “Blue Mockingbird is the name we’ve given to a cluster of similar activity we’ve observed involving Monero cryptocurrency-mining payloads in dynamic-link library (DLL) form on Windows systems.”

Mining

Mining Libraries Access Encryption

500M Avira Antivirus Users Introduced to Cryptomining

Krebs on Security

JANUARY 8, 2022

Many readers were surprised to learn recently that the popular Norton 360 antivirus suite now ships with a program which lets customers make money mining virtual currency. which was renamed to NortonLifeLock in 2019. Even with compatible hardware, mining cryptocurrencies on your own can be less rewarding.

Mining

Mining Privacy IT Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Norton 360 Now Comes With a Cryptominer

Krebs on Security

JANUARY 6, 2022

Norton 360 , one of the most popular antivirus products on the market today, has installed a cryptocurrency mining program on its customers’ computers. which was renamed to NortonLifeLock in 2019 (LifeLock is now included in the Norton 360 service). However, many users have reported difficulty removing the mining program.

Mining

Mining Computer and Electronics Blockchain Marketing

Nitrokod crypto miner infected systems across 11 countries since 2019

Security Affairs

AUGUST 29, 2022

Once the malicious code is executed, the malware connects to the C2 server to get the XMRig crypto miner configuration and starts mining crypto currencies. The post Nitrokod crypto miner infected systems across 11 countries since 2019 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook.

Mining

Mining Security Information Security IT

Cryptomining Attack Exploits Docker API Misconfiguration Since 2019

Threatpost

DECEMBER 29, 2021

Campaign exploits misconfigured Docker APIs to gain network entry and ultimately sets up a backdoor on compromised hosts to mine cryptocurrency.

Mining

Mining Cloud Security

Blue Mockingbird Monero-Mining Campaign Exploits Web Apps

Threatpost

MAY 7, 2020

The cybercriminals are using a deserialization vulnerability, CVE-2019-18935, to achieve remote code execution before moving laterally through the enterprise.

Mining

Mining Security

Two Estonian citizens arrested in $575M cryptocurrency fraud scheme

Security Affairs

NOVEMBER 22, 2022

“They induced victims to enter into fraudulent equipment rental contracts with the defendants’ cryptocurrency mining service called HashFlare. ” The defendants are accused to have defrauded the victims between December 2013 and August 2019, they operated with other co-conspirators residing in Estonia, Belarus, and Switzerland.

Mining

Mining Marketing IT Security

WatchDog botnet targets Windows and Linux servers in cryptomining campaign

Security Affairs

FEBRUARY 18, 2021

PaloAlto Network warns of the WatchDog botnet that uses exploits to take over Windows and Linux servers and mine cryptocurrency. 27, 2019 and already mined at least 209 Monero (XMR), valued to be around $32,056 USD. The WatchDog botnet has been active at least since Jan.

Mining

Mining Cloud Access Security

5 IoT Security Predictions for 2019

Security Affairs

DECEMBER 21, 2018

2018 was the year of the Internet of Things (IoT), massive attacks and various botnets hit smart devices, These are 5 IoT Security Predictions for 2019. 2019 will continue these trends but at a faster pace. Upcoming government standardization efforts will continue to increase substantially in 2019. About the author: Matt Burke.

IoT

IoT Security Manufacturing Privacy

GUEST ESSAY: Tapping Bitcoin’s security — to put a stop to ‘51% attacks’ of cryptocurrency exchanges

The Last Watchdog

OCTOBER 28, 2021

However, if an attacker possesses 51% or more of the computational power of the entire network, they can force nodes to accept their alternate chain, because it’s built with more mining power than the “legitimate” chain currently on the network. Attackers can use this method of rewriting history to reverse transactions.

Blockchain

Blockchain Mining Security IT

NY Charges First American Financial for Massive Data Leak

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. billion in 2019. In August 2019, the company said a third-party investigation into the exposure identified just 32 consumers whose non-public personal information likely was accessed without authorization. .

Insurance

Insurance Financial Services Mining Access

PGMiner, Innovative Monero-Mining Botnet, Surprises Researchers

Threatpost

DECEMBER 11, 2020

The malware takes aim at PostgreSQL database servers with never-before-seen techniques.

Mining

Mining Cloud Security

LemonDuck Shows Malware Can Evolve, Putting Linux and Microsoft at Risk

eSecurity Planet

JULY 27, 2021

The LemonDuck malware that for the past couple of years has been known for its cryptocurrency mining and botnet capabilities is evolving into a much broader threat, moving into new areas of cyber attacks, targeting both Linux and Microsoft systems and expanding its geographical reach, according to security researchers with Microsoft.

Risk

Risk Mining Ransomware Access

Lemon_Duck cryptomining botnet targets Docker servers

Security Affairs

APRIL 22, 2022

The Lemon_Duck cryptomining botnet is targeting Docker servers to mine cryptocurrency on Linux systems. Crowdstrikes researchers reported that the Lemon_Duck cryptomining botnet is targeting Docker to mine cryptocurrency on Linux systems. “The “a.asp” file is the actual payload in this attack. ” concludes the report.

Mining

Mining Cloud Access Cybersecurity

Highly evasive cryptocurrency miner targets macOS

Security Affairs

FEBRUARY 24, 2023

The malicious code uses i2p to download malicious components and send mined currency to the attacker’s wallet. The experts identified three generation of malware since August 2019. Today, many malicious applications continue to go undetected by most AV vendors.

Mining

Mining Passwords Communications Security

How the Data Science Elite helped uncover a gold mine at Experian

IBM Big Data Hub

JANUARY 7, 2019

Find out more about how the IBM Data Science Elite team helped Experian succeed at better analyzing their data at Think 2019.

Data science

Data science Mining

Recent ‘MFA Bombing’ Attacks Targeting Apple Users

Krebs on Security

MARCH 26, 2024

“For some reason, PeopleDataLabs has three profiles that come up when you search for my info, and two of them are mine but one is an elementary school teacher from the midwest,” Patel said. Apple fixed that bug nearly four months later in December 2019, thanking Bagaria in the associated security bulletin.

Passwords

Passwords Phishing Authentication Mining

PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs

Security Affairs

DECEMBER 13, 2020

In 2018, CVE-2019-9193 was linked to this feature, naming it as a “vulnerability.” “We believe PGMiner is the first cryptocurrency mining botnet that is delivered via PostgreSQL.” In 2019, a CVE-2019-9193 was assigned to this feature, naming it as a “vulnerability.”

Mining

Mining Authentication Passwords Access

A Cryptomining botnet abuses Bitcoin blockchain transactions as C2 backup mechanism

Security Affairs

FEBRUARY 24, 2021

Security experts from Akamai have spotted a new botnet used for illicit cryptocurrency mining activities that are abusing Bitcoin (BTC) transactions to implement a backup mechanism for C2. The operators of a long-running crypto-mining botnet campaign began creatively disguising their backup C2 IP address on the Bitcoin blockchain.”

Blockchain

Blockchain Mining Honeypots Security

WatchBog cryptomining botnet now uses Pastebin for C2

Security Affairs

SEPTEMBER 13, 2019

A new cryptocurrency-mining botnet tracked as WatchBog is heavily using the Pastebin service for command and control (C&C) operations. Cisco Talos researchers discovered a new cryptocurrency -mining botnet tracked as WatchBog is heavily using the Pastebin service for command and control. ” continues Talos.

Mining

Mining IT Security Information Security

New variant of Linux Botnet WatchBog adds BlueKeep scanner

Security Affairs

JULY 25, 2019

Experts at Intezer researchers have spotted a strain of the Linux mining that also scans the Internet for Windows RDP servers vulnerable to the Bluekeep. ” The vulnerability , tracked as CVE-2019-0708, impacts the Windows Remote Desktop Services (RDS) and was addressed by Microsoft with May 2019 Patch Tuesday updates. .

Mining

Mining Encryption IT Security

Previously undetected VictoryGate Botnet already infected 35,000 devices

Security Affairs

APRIL 27, 2020

The VictoryGate botnet is active since at least May 2019, the botnet is more active in Latin America the most. The VictoryGate bot propagates via infected USB devices, it was designed to mine Monero abusing resourced of compromised devices, it is also able to deliver additional payloads.

Mining

Mining Communications IT Cybersecurity

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Security Affairs

OCTOBER 26, 2020

Security experts spotted a new botnet, tracked as KashmirBlack botnet, that likely infected hundreds of thousands of websites since November 2019. The KashmirBlack botnet has been active at least since November 2019, operators leverages dozens of known vulnerabilities in the target servers. .”

CMS

CMS Mining Communications Security

APT hacked a US municipal government via an unpatched Fortinet VPN

Security Affairs

MAY 27, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. In April, the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) previously warned of attacks carried out by APT groups targeting Fortinet FortiOS servers using multiple exploits.

Government

Government Mining Archiving Encryption

Cryptojacking Coinhive Miners for the first time found on the Microsoft Store

Security Affairs

FEBRUARY 15, 2019

The removed apps are Fast-search Lite, Battery Optimizer (Tutorials), VPN Browsers+, Downloader for YouTube Videos, Clean Master+ (Tutorials), FastTube, Findoo Browser 2019, and Findoo Mobile & Desktop Search. The mining script then gets activated and begins using the majority of the computer’s CPU cycles to mine Monero for the operators.”

Mining

Mining Libraries Analytics Security

GUEST ESSAY: Why any sudden influx of spam emails is an indicator of a likely security issue

The Last Watchdog

AUGUST 7, 2023

Typically, scammers want to get ahold of an email because it’s a gold mine of information. Take the WhatsApp data breach of 2019, where hackers got the personal data of 1.5 An email address’s connection to personal information is valuable, so scammers try to access it. Wider harm So why does it matter if someone has your email?

Security

Security Personal data Passwords Cybersecurity

Cryptojacking campaign uses Shodan to scan for Docker hosts to hack

Security Affairs

JUNE 1, 2019

“The script then calls a Monero coin-mining binary, darwin (detected as PUA.Linux.XMRMiner.AA), to run in the background. As with all cryptocurrency miners, it uses the resources of the host system to mine cryptocurrency (Monero in this instance) without the owner’s knowledge.” link] — Caprico (@Suprn8) May 18, 2019.

Mining

Mining Honeypots Cloud Passwords

Intel outlook stokes concern server gold mine has lost shine

Information Management Resources

APRIL 29, 2019

The world’s second-largest semiconductor maker late Thursday predicted its data-center group will post a revenue decline in 2019, its first drop in a decade.

Mining

Mining IT

The most read OpenText blogs of 2019

OpenText Information Management

JANUARY 8, 2020

As we enter 2020, we’re taking a look back at the most read OpenText blogs of 2019. Here are the top 10 stories that caught your eye in 2019: 1. What’s the difference between data mining and text mining?

Mining

Mining Analytics

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. The SEC took aim at First American because a few days after our May 24, 2019 story ran, the company issued an 8-K filing with the agency stating First American had no prior indication of any vulnerability.

Insurance

Insurance Risk Financial Services Mining

DirtyMoe modules expand the bot using worm-like techniques

Security Affairs

MARCH 21, 2022

The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. Experts defined DirtyMoe as a complex malware that has been designed as a modular system. The executioner loads two modules, a Monero miner and a module for worming replication.

Mining

Mining Passwords Risk IT

New Pro-Ocean crypto-miner targets Apache ActiveMQ, Oracle WebLogic, and Redis installs

Security Affairs

JANUARY 31, 2021

The malware is an evolution of a Monero cryptocurrency miner that was first spotted by Unit 42 researchers in 2019. to mine Monero, unlike 2019 variant, it uses a Python infection script to implement “wormable” capabilities. “Pro-Ocean uses known vulnerabilities to target cloud applications. .

Cloud

Cloud Libraries Mining IT

MyKings botnet operators already amassed at least $24 million

Security Affairs

OCTOBER 13, 2021

Avast researchers reported that since 2019, MyKings operators have amassed at least $24 million in the Bitcoin, Ethereum, and Dogecoin. Avast Threat Labs researchers reported that the MyKings botnet (aka Smominru or DarkCloud) is still alive and is allowing its operators to earn huge amounts of money via cryptomining activities.

ROT

ROT Mining Encryption IT

Crypto Mining Service Coinhive to Call it Quits

Krebs on Security

FEBRUARY 27, 2019

com , a cryptocurrency mining service that has been heavily abused to force hacked Web sites to mine virtual currency. Coinhive took a whopping 30 percent of the cut of all Monero currency mined by its code, and this presented something of a conflict of interest when it came to stopping the rampant abuse of its platform.

Mining

Mining IT Blockchain Access

Crooks spread malware via pirated movies during COVID-19 outbreak

Security Affairs

APRIL 30, 2020

The campaign primarily targets users in Spain and South American countries, aims to launch a coin-mining shellcode directly in memory. The in-memory DLL then injects a coin-mining code into notepad.exe through process hollowing. .” reads the Tweet published by the Microsoft Security Intelligence team.

Mining

Mining File names Risk Cybersecurity

Microsoft warns of more disruptive BlueKeep attacks and urges patch installation

Security Affairs

NOVEMBER 8, 2019

pic.twitter.com/VdiKoqAwkr — Kevin Beaumont (@GossiTheDog) November 2, 2019. The vulnerability , tracked as CVE-2019-0708, impacts the Windows Remote Desktop Services (RDS) and was addressed by Microsoft with May 2019 Patch Tuesday updates. huh, the EternalPot RDP honeypots have all started BSOD'ing recently.

Honeypots

Honeypots Mining Analytics Ransomware

Coinbase suspended Ethereum Classic (ETC) trading after a successful 51% attack

Security Affairs

JANUARY 8, 2019

51% attack refers to an attack on a blockchain by a group of miners that controls over 50% of the network’s mining hashrate. “On 1/5/2019, Coinbase detected a deep chain reorganization of the Ethereum Classic blockchain that included a double spend. reads an update published by Coinbase on January 6, 2019.

Blockchain

Blockchain Mining IT Security

Mozi infections will slightly decrease but it will stay alive for some time to come

Security Affairs

SEPTEMBER 1, 2021

Mozi is an IoT botnet that borrows the code from Mirai variants and the Gafgyt malware , it appeared on the threat landscape in late 2019. According to the researchers, in the last months of 2019, the botnet was mainly involved in DDoS attacks.

IT

IT IoT Mining Manufacturing

Glupteba botnet is back after Google disrupted it in December 2021

Security Affairs

DECEMBER 19, 2022

The botnet was involved in stealing users’ credentials and data, mining cryptocurrencies abusing victims’ resources, and setting up proxies to funnel other people’s internet traffic through infected machines and routers. Botnet operators use to spread the malware via cracked or pirated software and pay-per-install (PPI) schemes.

Blockchain

Blockchain IT Mining Security

MY TAKE: Why DDoS weapons will proliferate with the expansion of IoT and the coming of 5G

The Last Watchdog

MARCH 28, 2019

I had the chance at RSA 2019 to discuss the wider implications with Don Shin, A10 Networks’ senior product marketing manager. Here we are in 2019 and the same attack strategy continues to persist. For a full drill down, give a listen to the accompanying podcast. Here are the key takeaways: Reflective attacks. Beyond DDoS.

IoT

IoT Mining Manufacturing Security

Chinese-speaking cybercrime gang Rocke changes tactics

Security Affairs

OCTOBER 15, 2019

The cybercrime organization was first spotted in April 2018 by researchers at Cisco Talos, earlier 2019 researchers from Palo Alto Networks Unit42 found new malware samples used by the Rocke group for cryptojacking that uninstalls from Linux servers cloud security and monitoring products developed by Tencent Cloud and Alibaba Cloud.

Mining

Mining Cloud Security Access

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

Upon release from prison, Skorjanc became chief technology officer for NiceHash , a cryptocurrency mining service. In October 2019, Skorjanc was arrested in Germany in response to a U.S.-issued In December 2017, $52 million worth of Bitcoin mysteriously disappeared from NiceHash coffers.

IT

IT Ransomware Mining Sales

Bitcoin Miner [oom_reaper] targets QNAP NAS devices

Security Affairs

DECEMBER 7, 2021

Upon compromising the devices, the miner will create a new process named [oom_reaper] that allows threat actors to mine Bitcoin. In 2019, Anomali researchers reported a wave of eCh0raix attacks against Synology NAS devices, threat actors conducted brute-force attacks against them.

Ransomware

Ransomware Mining Passwords IoT

CoinHive Cryptocurrency Mining Service will shut down on March 8, 2019

Blue Mockingbird Monero-Mining campaign targets web apps

Webinars

Trending Sources

500M Avira Antivirus Users Introduced to Cryptomining

Webinars

Norton 360 Now Comes With a Cryptominer

Nitrokod crypto miner infected systems across 11 countries since 2019

Cryptomining Attack Exploits Docker API Misconfiguration Since 2019

Blue Mockingbird Monero-Mining Campaign Exploits Web Apps

Two Estonian citizens arrested in $575M cryptocurrency fraud scheme

WatchDog botnet targets Windows and Linux servers in cryptomining campaign

5 IoT Security Predictions for 2019

GUEST ESSAY: Tapping Bitcoin’s security — to put a stop to ‘51% attacks’ of cryptocurrency exchanges

NY Charges First American Financial for Massive Data Leak

PGMiner, Innovative Monero-Mining Botnet, Surprises Researchers

LemonDuck Shows Malware Can Evolve, Putting Linux and Microsoft at Risk

Lemon_Duck cryptomining botnet targets Docker servers

Highly evasive cryptocurrency miner targets macOS

How the Data Science Elite helped uncover a gold mine at Experian

Recent ‘MFA Bombing’ Attacks Targeting Apple Users

PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs

A Cryptomining botnet abuses Bitcoin blockchain transactions as C2 backup mechanism

WatchBog cryptomining botnet now uses Pastebin for C2

New variant of Linux Botnet WatchBog adds BlueKeep scanner

Previously undetected VictoryGate Botnet already infected 35,000 devices

KashmirBlack, a new botnet in the threat landscape that rapidly grows

APT hacked a US municipal government via an unpatched Fortinet VPN

Cryptojacking Coinhive Miners for the first time found on the Microsoft Store

GUEST ESSAY: Why any sudden influx of spam emails is an indicator of a likely security issue

Cryptojacking campaign uses Shodan to scan for Docker hosts to hack

Intel outlook stokes concern server gold mine has lost shine

The most read OpenText blogs of 2019

First American Financial Pays Farcical $500K Fine

DirtyMoe modules expand the bot using worm-like techniques

New Pro-Ocean crypto-miner targets Apache ActiveMQ, Oracle WebLogic, and Redis installs

MyKings botnet operators already amassed at least $24 million

Crypto Mining Service Coinhive to Call it Quits

Crooks spread malware via pirated movies during COVID-19 outbreak

Microsoft warns of more disruptive BlueKeep attacks and urges patch installation

Coinbase suspended Ethereum Classic (ETC) trading after a successful 51% attack

Mozi infections will slightly decrease but it will stay alive for some time to come

Glupteba botnet is back after Google disrupted it in December 2021

MY TAKE: Why DDoS weapons will proliferate with the expansion of IoT and the coming of 5G

Chinese-speaking cybercrime gang Rocke changes tactics

Canada Charges Its “Most Prolific Cybercriminal”

Bitcoin Miner [oom_reaper] targets QNAP NAS devices

Stay Connected