A campaign dubbed “Autom” that exploits misconfigured Docker APIs to gain network entry and construct backdoors on compromised hosts has been discovered by cybersecurity researchers. The campaign ultimately seeks to mine cryptocurrency on compromised devices. The cryptomining campaign has been active since 2019, however, it has gone unnoticed by cybersecurity

According to Trend Micro researchers, threat groups have been disabling features in Alibaba Cloud ECS to plant malware and perform crypto mining or jacking. Cybercriminals are allegedly targeting Alibaba Elastic Computing Search instances and disabling certain security features that prevent them from achieving their goals when it comes to cryptomining.

According to Juniper Threat Labs, the new Necro Python exploits targets’ Visual Tool DVRs used in surveillance systems. The Necro botnet was developed by the threat group FreakOut and has reportedly learned a new trick that consists of infecting the Visual Tool DVRs with a Monero crypto miner. In late

More than 170 Android apps, including 25 from Google Play were caught trying to scam people by offering cryptomining services for a fee but failing to return anything. Security firm Lookout said these apps did not get caught for scamming people because they didn’t do anything malicious but acted as

According to Lookout, at least 25 different apps available in the Google Play store have lured thousands of victims into downloading malicious applications that promise to help users gain cash through crypto mining. The Android apps are estimated to have scammed more than 93,400 victims to date, totaling roughly $350,000

A new NSFOCUS report indicates that the declining price of cryptocurrencies in 2018 prompted threat actors to stop using botnet resources  for cryptomining attacks – as these were getting less and less profitable – and increasingly use them to launch distributed denial-of-service (DDoS) attacks instead. Despite this, the number of

A new NTT security report shows that 17% of all cyberattacks in the past year targeted the financial sector. The technology sector also accounted for 17% of attacks in 2018, but finance has been the most targeted industry for 6 of the last 7 years. Other highly targeted industries were

China may eliminate its subsidized cryptomining industry in the near future. Cryptomining involves the use of the processing power of machines in order to solve complex math problems, by which cryptocurrencies are generated. The Chinese regime initially believed that investing in cryptomining could be beneficial to its economy, and therefore

A new Check Point report shows that despite the recent shutdown of Coinhive, a cryptomining software developed for legitimate purposes but frequently used for nefarious purposes by criminals, cryptominers are still among the most common malware targeting organizations across the globe. A cryptominer is malware that hijacks the processing power

Even though cryptojacking, i.e. the illegitimate use of a system’s resourcing powers for mining cryptocurrency, is a serious threat to organizations, a new survey by Exabeam found that a majority (57%) of infosec professionals don’t even know what it is. In addition, 65% of respondents were not familiar with shadow