July 1, 2019 Attackers Disperse Cryptocurrency-Mining Malware via a Golang-Based Spreader < 1 min read - Threat actors launched an attack campaign that uses a Golang-based spreader to distribute cryptocurrency-mining malware, according to researchers.
June 18, 2019 Outlaw Threat Group Using Botnet to Distribute Monero Miner, Perl-Based Backdoor 2 min read - The Outlaw threat group is using a botnet to distribute a Monero cryptocurrency miner and a Perl-based backdoor component.
June 17, 2019 Threat Actors Use Targeted Attack Tools to Distribute Cryptocurrency Miners, Ransomware 2 min read - Threat actors are using targeted attack tools to distribute typical malware, such as cryptocurrency miners and ransomware.
June 11, 2019 Attack Campaign Exploits CVE-2019-2725, Abuses Certificate Files to Deliver Monero Miner < 1 min read - Researchers observed an attack campaign exploiting CVE-2019-2725 and abusing certificate files to deliver a Monero miner.
June 11, 2019 Fileless Attack Campaign Leverages PCASTLE to Distribute XMRig Monero-Mining Malware 2 min read - According to researchers, the fileless attack uses PCASTLE to distribute samples of XMRig, a well-known Monero-mining malware family.
June 5, 2019 BlackSquid Malware Capable of Abusing 8 Exploits to Install XMRig Monero Miner 2 min read - The new BlackSquid malware is capable of abusing eight notorious exploits in its attempts to install the XMRig Monero miner.
June 3, 2019 New HiddenWasp Linux Malware Focused Solely on Achieving Targeted Remote Control < 1 min read - A new threat called HiddenWasp is different from other Linux malware in that it's focused solely on achieving targeted remote control of infected hosts.
May 1, 2019 DDoS Botnet Targeting Electrum Servers Grows to 152,000 Infected Hosts 2 min read - A DDoS botnet targeting servers used by the Electrum bitcoin wallet reached 152,000 infected hosts at the end of April.
April 15, 2019 Attackers Use EternalBlue and PowerShell Scripts to Spread Cryptomining Malware Across Asia 2 min read - A cryptomining malware campaign originally discovered in January is now using the EternalBlue exploit to target users in Asia, according to security researchers.
Incident Response April 9, 2019 Credential Dumping Campaign Hits Multinational Corporations 6 min read - X-Force researchers observed attackers targeting multinational corporations in various sectors using malicious scripts to automate attacks on misconfigured servers.