Woody Leonhard's no-bull news, tips and help for Windows, Office and more… Please disable your ad blocker – our (polite!) ads help keep AskWoody going!
Home icon Home icon Home icon Email icon RSS icon
  • Massive cryptocurrency botnet used leaked NSA exploits weeks before WCry

    Posted on MrBrian Comment on the AskWoody Lounge

    Home Forums Code Red – Security advisories Massive cryptocurrency botnet used leaked NSA exploits weeks before WCry

    This topic contains 3 replies, has 3 voices, and was last updated by  Kirsty 2 months, 1 week ago.

    • Author
      Posts
    • #115714 Reply

      MrBrian
      AskWoody MVP

      From https://arstechnica.com/security/2017/05/massive-cryptocurrency-botnet-used-leaked-nsa-exploits-weeks-before-wcry/:

      “On Friday, ransomware called WannaCry used leaked hacking tools stolen from the National Security Agency to attack an estimated 200,000 computers in 150 countries. On Monday, researchers said the same weapons-grade attack kit was used in a much-earlier and possibly larger-scale hack that made infected computers part of a botnet that mined cryptocurrency.”

      2 users thanked author for this post.
    • #115853 Reply

      Kirsty
      AskWoody MVP

      Proofpoint.com’s article

      Adylkuzz Cryptocurrency Mining Malware Spreading for Weeks Via EternalBlue/DoublePulsar
      May 15, 2017 | Kafeine

       
      “…we discovered another very large-scale attack using both EternalBlue and DoublePulsar to install the cryptocurrency miner Adylkuzz. Initial statistics suggest that this attack may be larger in scale than WannaCry, affecting hundreds of thousands of PCs and servers worldwide: because this attack shuts down SMB networking to prevent further infections with other malware (including the WannaCry worm) via that same vulnerability, it may have in fact limited the spread of last week’s WannaCry infection.”
       

      This may have been around since as early as April 24th.

      1 user thanked author for this post.
    • #115977 Reply

      NetDef
      AskWoody Lounger

      I just now ran across this news, seconds before seeing it posted here.  Guess I need to check this specific forum more often!

      2 users thanked author for this post.
    • #116542 Reply

      Kirsty
      AskWoody MVP

      Your PC might be being hijacked to make someone rich
      Adylkuzz malware found to be mining the Monero cryptocurrency for its creators.

      By Sead Fadilpašić

       
      A new form of malware is targeting innocent victims in order to mine cryptocurrency for its creators.

      Adylkuzz, which targets the Monero cryptocurrency, stays hidden within an infected machine, and does not give visual warnings or interfere with users’ files.

      Security firm Bitdefender, which first spotted the malware, says the best way to protect yourself is to keep your operating system up to date, to disable the Server Message Block service on the computer if patching is impossible, and back up any and all data to offline hard drives…

       
      Read the full article on http://www.itproportal.com

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: Massive cryptocurrency botnet used leaked NSA exploits weeks before WCry

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.

    Your information:


    Comments are closed.