Microsoft Detects A New Cryptocurrency-Related Malware Spreading Across Windows Computers

2020-9-7 17:25

Microsoft’s Security team warns of a possible cryptocurrency malware for Windows users. The malware targets personal info, credit card details, credentials, and cryptocurrency wallets. Users urged not to open any suspicious or fishy emailed attachments.

The Microsoft Security Intelligence team confirmed the presence of a new ‘info-stealing malware’ present in its Windows computers. In a tweet on Aug 27, the MSI team stated the malware was first spotted on cybercriminal black markets in June but has recently started spreading widely across the globe.

The new malware shares a name with an unrelated family of Android banking malware. Anubis is deployed in what appears to be limited, initial campaigns that have so far only used a handful of known download URLs and C2 servers.

— Microsoft Security Intelligence (@MsftSecIntel) August 26, 2020

The malware, named Anubis, arises from a code forked from Loki info-stealing malware, which was first detected in February 2016. Loki malware first started targeting Android operating systems on mobile phones allowing the hackers to steal credentials, data ex-filtration, disabling notifications, and intercepting communications.

The widespread malware in the fall of 2017 detected ransomware behavior with a forked version sold in the cybercriminal underground marketplaces.

Read more: Microsoft Raises Alarm As 80k Computers Are Attacked By Crypto-Stealing Bug

Similarly, the hackers trick users into downloading the Anubis malware through suspicious emails and false websites and “sends these to command and control servers via an HTTP POST command.” The malware then steals Windows users’ information, mainly targeting crypto wallets, bank credit card information, personal info, and the system operating details.

However, MSI believes the malware is still in its maturity stages, hence limited, and users can keep safe from it.

“The new malware shares a name with an unrelated family of Android banking malware,” MSI tweet reads. “Anubis is deployed in what appears to be limited, initial campaigns that have so far only used a handful of known download URLs and C2 servers.”

MSI warns Windows users not to click on any suspicious emails and websites to avoid downloading the malware. MSI continues to monitor the progress of the fork and will give updates on its growth.

The post Microsoft Detects A New Cryptocurrency-Related Malware Spreading Across Windows Computers first appeared on BitcoinExchangeGuide.

Similar to Notcoin - Blum - Airdrops In 2024

origin »

Time New Bank (TNB) на Currencies.ru

$ 0 (+0.00%)
Объем 24H $0
Изменеия 24h: 0.00 %, 7d: 0.01 %
Cегодня L: $0 - H: $0
Капитализация $0 Rank 99999
Цена в час новости $ 0.002101 (-100%)

malware computers microsoft windows team new across

malware computers → Результатов: 63


Хакеров-криптоджекеров в США приговорили к 20 годам тюрьмы

Два участника румынской хакерской группировки Bayrob Group приговорены в США к двум десяткам лет тюрьмы за заражение 400 тысяч компьютеров вредоносным ПО для скрытого майнинга. TWO MEMBERS OF THE ROMANIAN CYBERCRIMINAL ENTERPRISE BAYROB GROUP SENTENCED ON 21 COUNTS RELATING TO INFECTING OVER 400,000 VICTIM COMPUTERS WITH MALWARE AND STEALING AT LEAST $4 MILLION https://t.co/6iZnFGrwmK @USAttyHerdman […]

2019-12-10 10:04


Romanian Hackers Get 20 Years in Prison For Cryptojacking 400k Computers To Mine $4M In BTC & XMR

Bogdan Nicolescu, the leader of the Bayrob Group hacker gang from Romania, as well as his co-conspirator Radu Miclaus, have been found guilty of charges related to their cryptojacking malware. The charges include 21 separate counts of wire fraud, money laundering, aggravated identity theft, and other crimes, according to a press release that was published […]

2019-12-10 23:51


French Cops Trick Monero Cryptomining Botnet to Self-Destruct on 850,000 Computers

The Retadup malware which had been deployed on hundreds of thousands of computers around the world to secretly mine the Monero cryptocurrency and commit other illegal acts may finally be over. According to the BBC, the backend infrastructure of the Retadup Monero cryptojacker which is estimated to have infected over 850,000 computers across the globe […] The post French Cops Trick Monero Cryptomining Botnet to Self-Destruct on 850,000 Computers appeared first on CCN Markets

2019-8-30 15:39


Фото:

PSA: Update your Windows machine now to fix 29 Critical security vulnerabilities

Microsoft has patched four serious vulnerabilities that could allow a malicious actor to remotely take control of Windows computers. The four remote code execution flaws — addressed as part of the company’s monthly Patch Tuesday updates — affect all in-support versions of Windows and concern the Windows Remote Desktop Services (RDS) component, enabling attackers to take over a computer and then propagate malware to other computers without any user intervention.

2019-8-14 14:35


New Malware, Shellbot Revealed, with the Ability to Create Crypto Using Others’ Resources, Be Aware

On Wednesday, May 1, 2019, security-focused firm, Threat Stack disclosed the findings of a relatively new malware called Shellbot to TechCrunch. As per the claims made, Shellbot – which was first discovered on an unnamed US firm’s server – has the ability to infect computers with Linux servers that carry easy-to-break into passwords, and then […]

2019-5-2 01:53


Фото:

Romanian duo convicted in US for using cryptocurrency malware-mining to steal millions

Two Romanian residents have been convicted of infecting over 400,000 individual computers with malware in order to mine cryptocurrency and steal victims’ data to sell on the dark web. Bogdan Nicolescu, 36, and Radu Miclaus, 37, were convicted by a US jury following a 12-day trial of conspiracy to commit wire fraud, conspiracy to traffic in counterfeit service marks, aggravated identity theft, conspiracy to commit money laundering, and 12 counts each of wire fraud.

2019-4-12 15:31


IBM Data Says Cybercriminals Are Replacing Ransomware and Malware Attacks For Cryptojacking

Hackers are always trying to find the most profitable ways to steal money from people online. Because of this, their attacks evolve together with the technology. If hackers used to send emails with simple viruses attached to them before, now they are using a lot more methods, including using other people’s computers to mine crypto. […]

2019-2-28 05:19


New Unit 42 Research Shows “Rocke” Crypto Mining Malware Has Started To Be “Self-Aware”

Crypto Mining Malware Has Started To Be “Self-Aware” Crypto mining malware is one of the worst threats that people are facing right now. With the rise in the price of crypto's (especially Bitcoin and Monero), many malware appeared to use people’s computers to mine tokens and make a profit. Now, The Next Web’s Hard Fork […]

2019-1-17 20:57


Five South Korean Hackers Get Arrested for Infecting Crypto Mining Malware into Over 6,000 Computers

The South Korean police have arrested five people for injecting malware in the computer of over 6,000 people. The local police have joined efforts with the Korean National Police Agency Cyber Bureau to arrest a group of five hackers led by Kim Amu-Gae, 24, which have released 32,435 emails containing a crypto mining malware. These […]

2018-11-9 01:56


Фото:

Mac Cryptocurrency Price Tracking App Installs Backdoors to Control Host Computer

A Trojan pretending to be a macOS cryptocurrency ticker called CoinTicker was discovered installing backdoors on the computers of unsuspecting users, Bleeping Computer reported on October 29, 2018. Mac Cryptocurrency Price Tracker Caught Installing Backdoors Dozens of cybersecurity publications sounded the alarm over another cryptocurrency malware that was discovered on October 29, after a Malwarebytes forum user reported a trojan.

2018-10-31 18:00


Фото:

Malwarebytes Forum User Discovers a Crypto Tracker App That Secretly Installed Backdoors in Macs

An astute Malwarebytes forums user recently noticed that a crypto price tracker application, called CoinTicker, covertly installed backdoors in Mac computers. A recent blog post from Malwarebytes’ Thomas Reed, Director of Mac & Mobile, explains how a contributor on the Malwarebytes forum going by the name 1vladimir noticed an app called CoinTicker was secretly installing two different backdoors onto computers after download.

2018-10-30 07:30


Фото:

Town In Canada Meets Hackers Demands With Bitcoin Ransom

In the Ontario province of Canada, holds the town of Midland which has a population of more than 16,000 people and has recently had its computer systems hacked and infected with ransom malware. The town of Midland has come to conclusion that they are going to meet the hackers wants and pay them (as per their demands) in Bitcoin, in order to get the computer system up and running again.

2018-9-12 13:00