Crypto Hackers have infected more than 50,000 servers across the world with mining malware and other sophisticated tools according to reports that we have in our latest cryptocurrency news.
The cybersecurity company Guardicore Labs noted on May 29 that large-scale malware effort was used under the name ‘’Nansh0u camping’’ and the attack has been going on since February and managed to spread over 700 victims each day. The attack mostly targeted media companies, the IT sector, healthcare providers and telecoms.
Guardicore found about 20 different malicious payloads in the malware over the months with new ones creating almost every week which was put into use as soon as they were created. The package installed a rootkit as well that prevented the malware is removed.
The company also pointed out that it has contacted the hosting provider of the attack servers and the rootkit issues certificate which said:
“As a result, the attack servers were taken down and the certificate was revoked.’’
Notably, as reported in the coming altcoin news, the cybersecurity company stated that the attack used sophisticated tools similar to those that the nation states would have used which indicates that there was elite digital weaponry involved and it is undoubtedly becoming more accessible to cybercriminals. The package also was written in Chinese language tools and was placed on Chinese language service. Guardicore said about the crypto hackers and their tools:
“The Nansh0u campaign is not a typical crypto-miner attack. It uses techniques often seen in APTs [advanced persistent threats] such as fake certificates and privilege escalation exploits. While advanced attack tools have normally been the property of highly skilled adversaries, this campaign shows that these tools can now easily fall into the hands of less than top-notch attackers.”
The company also noted that the campaign demonstrates how strong the credentials are and their vital role in the protection of the companies’ assets:
“This campaign demonstrates once again that common passwords still comprise the weakest link in today’s attack flows. Seeing tens of thousands of servers compromised by a simple brute-force attack, we highly recommend that organizations protect their assets with strong credentials as well as network segmentation solutions.’’
DC Forecasts is a leader in many crypto news categories, striving for the highest journalistic standards and abiding by a strict set of editorial policies. If you are interested to offer your expertise or contribute to our news website, feel free to contact us at [email protected]
Discussion about this post