coin miner Archives - ThreatsHub Cybersecurity News

Phorpiex morphs: How a longstanding botnet persists and thrives in the current threat environment

May 20, 2021 TH Author Avaddon, botnet, coin miner, Cryptocurrency mining, Cybersecurity, Knot, Microsoft security intelligence, Phishing, Phorpiex, ransomware, worms

Phorpiex, an enduring botnet known for extortion campaigns and for using old-fashioned worms, began diversifying its infrastructure in recent years to become more resilient and to deliver more dangerous payloads. Today, the Phorphiex botnet continues to maintain a large network of bots and generates wide-ranging malicious activities. These activities have expanded to include cryptocurrency mining. Read our in-depth research into this botnet.
The post Phorpiex morphs: How a longstanding botnet persists and thrives in the current threat environment appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Analyzing attacks taking advantage of the Exchange Server vulnerabilities

March 25, 2021 TH Author coin miner, Cybersecurity, DoejoCrypt, Exchange Server, exploits, Lemon Duck, Microsoft security intelligence, post-exploitation, Pydomer, ransomware, Vulnerabilities

Microsoft continues to monitor and investigate attacks exploiting the recent on-premises Exchange Server vulnerabilities. As organizations recover from this incident, we continue to publish guidance and share threat intelligence to help detect and evict threat actors from affected environments.
The post Analyzing attacks taking advantage of the Exchange Server vulnerabilities appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Threat actor leverages coin miner techniques to stay under the radar – here’s how to spot them

November 30, 2020 TH Author APT32, BISMUTH, coin miner, Cryptocurrency mining, cyberespionage, Cybersecurity, Microsoft 365 Defender, Microsoft Defender for Office 365, OceanLotus

BISMUTH, which has been running increasingly complex cyberespionage attacks as early as 2012, deployed Monero coin miners in campaigns from July to August 2020. The group’s use of coin miners was unexpected, but it was consistent with their longtime methods of blending in.
The post Threat actor leverages coin miner techniques to stay under the radar – here’s how to spot them appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Attack inception: Compromised supply chain within a supply chain poses new risks

July 26, 2018 TH Author coin miner, Cryptocurrency mining, Cybersecurity, in-browser cryptocurrency miner, Security Intelligence, Security Response, software supply chain, supply chain attack, Windows, Windows 10, Windows 10 in S mode, Windows 10 S, Windows Defender Antivirus, Windows Defender Application Control, Windows Defender ATP, Windows Defender AV

A new software supply chain attack unearthed by Windows Defender Advanced Threat Protection (Windows Defender ATP) emerged as an unusual multi-tier case. Unknown attackers compromised the shared infrastructure in place between the vendor of a PDF editor application and one of its software vendor partners, making the apps legitimate installer the unsuspecting carrier of a Read more READ MORE HERE…