home.social

#cryptominers — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #cryptominers, aggregated by home.social.

  1. A bizarre new Linux malware can be found hiding in cute animal photos - That cute panda pic? It's actually a cryptominer techradar.com/pro/security/a-d
    That cute panda pic? It's actually a cryptominer #cybersecurity #Linux #malware #cuteimages #Pandas #cryptominers #LLMCoded

  2. A bizarre new Linux malware can be found hiding in cute animal photos - That cute panda pic? It's actually a cryptominer techradar.com/pro/security/a-d
    That cute panda pic? It's actually a cryptominer #cybersecurity #Linux #malware #cuteimages #Pandas #cryptominers #LLMCoded

  3. A bizarre new Linux malware can be found hiding in cute animal photos - That cute panda pic? It's actually a cryptominer techradar.com/pro/security/a-d
    That cute panda pic? It's actually a cryptominer #cybersecurity #Linux #malware #cuteimages #Pandas #cryptominers #LLMCoded

  4. A bizarre new Linux malware can be found hiding in cute animal photos - That cute panda pic? It's actually a cryptominer techradar.com/pro/security/a-d
    That cute panda pic? It's actually a cryptominer #cybersecurity #Linux #malware #cuteimages #Pandas #cryptominers #LLMCoded

  5. A bizarre new Linux malware can be found hiding in cute animal photos - That cute panda pic? It's actually a cryptominer techradar.com/pro/security/a-d
    That cute panda pic? It's actually a cryptominer #cybersecurity #Linux #malware #cuteimages #Pandas #cryptominers #LLMCoded

  6. Malicious #VSCode extensions infect Windows with #cryptominers
    The package names are:
    Discord Rich Presence for VS Code - 189K Installs
    Rojo – Roblox Studio Sync - 117K Installs
    Solidity Compiler - 1.3K Installs
    Claude AI
    Golang Compiler
    ChatGPT Agent for VSCode
    HTML Obfuscator
    Python Obfuscator for VSCode
    Rust Compiler for VSCode
    ExtensionTotal says it reported the malicious extensions to #Microsoft, but they are still available at the time of writing.
    bleepingcomputer.com/news/secu

  7. #Windows infected with backdoored #Linux #VM in #new phishing attacks
    Using #virtualmachines to conduct attacks is nothing new, with #ransomware gangs and #cryptominers using them to stealthily perform malicious activity. However, threat actors commonly install these manually after they breach a network.
    bleepingcomputer.com/news/secu #QEMU #ITSec

  8. What’s Next for Crypto Mining in Russia? Leaders Discuss Taxes and Legislation - Russia has been steadily moving towards full regulation of its crypto mining industry, as... - coingape.com/whats-next-for-cr #24/7cryptocurrencynews #russiacryptomining #regulationnews #cryptominers

  9. What’s Next for Crypto Mining in Russia? Leaders Discuss Taxes and Legislation - Russia has been steadily moving towards full regulation of its crypto mining industry, as... - coingape.com/whats-next-for-cr #24/7cryptocurrencynews #russiacryptomining #regulationnews #cryptominers

  10. What’s Next for Crypto Mining in Russia? Leaders Discuss Taxes and Legislation - Russia has been steadily moving towards full regulation of its crypto mining industry, as... - coingape.com/whats-next-for-cr #24/7cryptocurrencynews #russiacryptomining #regulationnews #cryptominers

  11. What’s Next for Crypto Mining in Russia? Leaders Discuss Taxes and Legislation - Russia has been steadily moving towards full regulation of its crypto mining industry, as... - coingape.com/whats-next-for-cr #24/7cryptocurrencynews #russiacryptomining #regulationnews #cryptominers

  12. Malaysia Loses Over $700 Million Worth of Electricity to Illegal Crypto Miners, Says Minister - According to a government minister, Malaysia lost $727 million worth of electricit... - news.bitcoin.com/malaysia-lose #electricitytheft #cryptocurrency #cryptominers #mining

  13. Happy Friday everyone!

    #Cryptominers and #CVE20173506 is featured in today's #readoftheday! Trend Micro takes us through a riveting tale where the protagonist, #WaterSigbin, abuses a vulnerability in Oracle WebLogic Servers. After exploitation, a Base64-encoded payload is run that drops the initial stage loader named "wireguard2-3.exe", which masquerades itself as a legitimate VPN technology to help with it's defense evasion. It also plays a role in getting the attack to the next stages which involve DLL-reflection, C2 communication, and finally the #XMRig cyrptominer.

    Significant details that are included is a scheduled task created for Windows Defender exclusion, some discovery using WMI, and another scheduled task for persistence. As usual, I am not going to spoil it all, go and have a read for yourself! Enjoy and Happy Hunting!

    Notable MITRE ATT&CK TTPs (thanks to the authors):
    TA0001 - Initial Access
    T1190 - Exploit Public-Facing Application

    TA0002 - Execution
    T1059.001 - Command and Scripting Interpreter: PowerShell
    T1047 - Windows Management Instumentation

    TA0005 - Defense Evasion
    T1620 - Reflective Code Loading
    T1036.005 - Masquerading: Match Legitimate Name or Location
    T1562.001 - Impair Defenses: Disable or Modify Tools

    TA0003 - Persistence
    T1053.005 - Scheduled Task/Job: Scheduled Task

    TA0011 - Command And Control
    T1571 - Non-Standard Port
    T1071 - Application Layer Protocol

    TA0007 - Discovery
    T1057 - Process Discovery
    T1012 - Query Registry

    Examining Water Sigbin's Infection Routine Leading to an XMRig Cryptominer
    trendmicro.com/en_us/research/

    Intel 471 #CyberSecurity #ITSecurity #InfoSec #BlueTeam #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #gethunting

  14. Happy Friday everyone!

    #Cryptominers and #CVE20173506 is featured in today's #readoftheday! Trend Micro takes us through a riveting tale where the protagonist, #WaterSigbin, abuses a vulnerability in Oracle WebLogic Servers. After exploitation, a Base64-encoded payload is run that drops the initial stage loader named "wireguard2-3.exe", which masquerades itself as a legitimate VPN technology to help with it's defense evasion. It also plays a role in getting the attack to the next stages which involve DLL-reflection, C2 communication, and finally the #XMRig cyrptominer.

    Significant details that are included is a scheduled task created for Windows Defender exclusion, some discovery using WMI, and another scheduled task for persistence. As usual, I am not going to spoil it all, go and have a read for yourself! Enjoy and Happy Hunting!

    Notable MITRE ATT&CK TTPs (thanks to the authors):
    TA0001 - Initial Access
    T1190 - Exploit Public-Facing Application

    TA0002 - Execution
    T1059.001 - Command and Scripting Interpreter: PowerShell
    T1047 - Windows Management Instumentation

    TA0005 - Defense Evasion
    T1620 - Reflective Code Loading
    T1036.005 - Masquerading: Match Legitimate Name or Location
    T1562.001 - Impair Defenses: Disable or Modify Tools

    TA0003 - Persistence
    T1053.005 - Scheduled Task/Job: Scheduled Task

    TA0011 - Command And Control
    T1571 - Non-Standard Port
    T1071 - Application Layer Protocol

    TA0007 - Discovery
    T1057 - Process Discovery
    T1012 - Query Registry

    Examining Water Sigbin's Infection Routine Leading to an XMRig Cryptominer
    trendmicro.com/en_us/research/

    Intel 471 #CyberSecurity #ITSecurity #InfoSec #BlueTeam #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #gethunting

  15. Senate Passes Bill Giving Tax Exemption to Bitcoin, Crypto Miners - The Oklahoma state Senate has approved House Bill 1600, which grants tax exemptions to Bi... - coingape.com/senate-passes-bil #24/7cryptocurrencynews #cryptoregulation #regulationnews #cryptominers #cryptomining #bitcoin

  16. Have any of the big tech companies (eg #Microsoft, #Google, #AWS, #OpenAI) or the #CryptoMiners looked at how they can reuse/recapture the waste energy they generate, and eliminate the water waste involved in cooling? Are they locating these energy intensive operations where that waste energy can be used? That would mitigate at least some of the problems they cause.

    #DistrictThermalNetorks

  17. this motherfucker, cuz #AI is the new #crypto scam:

    remember when during the #pandemic #shutdowns this motherfucker was lying about #cryptominers and telling everybody to pay up 2/3/5K for their graphics cards or GTFO?
    cnn.com/2022/05/06/tech/nvidia

    and then China and other Asian countries cracked down on miners & the prices dropped like a lead balloon?
    gizmodo.com/chinas-crypto-crac

    then magically miners pivoted into AI data hoovering centers?
    theguardian.com/australia-news

    pepperidge farms remembers...

  18. It's fun watching #cryptominers trying to launch on a raspberry pi 3 ##honeypot. Now that will make you a ton of money 🤣🤣

  19. While I may publish a more complete blog post about this later
    I also sent this on twitter to make #Github aware of it quicker
    However I felt that I should also publish it here.

    I recently came upon this post on reddit: reddit.com/r/cybersecurity_hel

    Which awakened my curiosity about this user who has quite a few repo's with multiple stars: github[.]com/AppsForDesktop

    looking at their profile I noticed various repo's claiming to be desktop app for various popular websites and apps.

    When I investigated these repo's in my sandboxes I discovered they installed the file: cnertucbrcaj[.]exe and performed various persistence techniques,
    Adding several exclusions to defender
    and uninstalling various windows security components such as MRT.

    After which it of course connected to various Monero mining pools.

    #malware #cybersecurity #cryptominers #cybersec #securityresearch

  20. Crypto Advocates Mention Bitcoin Mining as a “Critical Tool” for Clean Energy and Balancing Grid - Source: AdobeStock / Photocreo Bednarek
    A number of crypto advocates have emphasiz... - cryptonews.com/news/crypto-adv #bitcoinmining #cryptominers #bitcoinnews

  21. Digital Asset Miner Hut 8 Reports 44% Increase in Carbon Credits Amid Sector’s Energy Consumption – Mining Making a Comeback? - Source: AdobeStock / Photocreo Bednarek
    Cryptocurrency miner, Hut 8 partnered with... - cryptonews.com/news/digital-as #blockchainnews #carboncredits #cryptominers #crypto #hut8

  22. "🚨 Openfire Vulnerability Under Active Exploit: A Gateway to Ransomware and Cryptominers 🚨"

    The widely-used Openfire chat server is under siege as hackers exploit a high-severity flaw, CVE-2023-32315, to deploy ransomware and cryptominers. This Java-based open-source XMPP server, boasting 9 million downloads, has become a lucrative target due to an authentication bypass vulnerability in its admin console. Attackers are creating new admin accounts on vulnerable servers, installing malicious Java plugins, and executing commands via HTTP requests. 🛑

    The flaw spans across various Openfire versions dating back to 2015. Although patches were released in May 2023, over 3,000 servers remained vulnerable by mid-August 2023. The first known exploitation dates back to June 2023, when a server was ransomed post-exploitation. Attack scenarios include deploying crypto-mining trojans, installing backdoors, and extracting server information. 🕵️

    Dr. Web has identified four distinct attack scenarios leveraging this flaw, emphasizing the urgency of applying available security updates. BleepingComputer also reports multiple instances of Openfire servers being encrypted with ransomware, appending a .locked1 extension to files. The ransom demands range from 0.09 to 0.12 bitcoins ($2,300 to $3,500). 🖥️🔓

    The threat landscape is evolving, with threat actors not solely targeting Openfire servers but any vulnerable web server. It's a stark reminder for organizations to stay vigilant and ensure their systems are up-to-date with the latest security patches. 🛡️

    Source: BleepingComputer by Bill Toulas

    Tags: #Openfire #Ransomware #Cryptominers #CyberSecurity #Vulnerability #CVE202332315 #ThreatIntel #InfoSec #PatchManagement #ServerSecurity #DrWeb #BleepingComputer 🌐🔐

    MITRE CVE-2023-32315

  23. Will Ethereum Price Fall Below $2,000 As Miners Starts ETH Withdrawals? - After the Ethereum Shanghai upgrade, ETH price continues its upside move and even ... - coingape.com/will-ethereum-pri #24/7cryptocurrencynews #ethereumprice #cryptominers #altcoinnews #ethwhales #ethereum #binance #f2pool