New mining tool of digital currency malware on Linux devices
A malware creator has just created a tool for mining digital currency infecting Linux devices, use to login information of Telnet open or default. This new Trojan was discovered by Dr. The Web under the name Linux.BTCMine.26, will mine Monero currency and only target x86-64 machines with ARM hardware.
Mining tool infects Linux machines through unsafe Telnet ports
The researchers said the Trojan uses a Telnet scanner, like the tool used by the Mirai IoT malware. BTCMine will randomly scan IPv4 addresses and attempt to connect through the Telnet port.
If the gateway or user uses one of the default Telnet certificates, the malware connects and runs the command to load and execute the actual BTCMine binary file.
This Trojan caught the eye of Dr. Web researchers, so there are more references to krebsonsecurity.com, a personal journalist's blog, the prestigious privacy researcher Brian Krebs.
This is not the first malware to mention Krebs or his blog as they are both very well known in security research and malware authors. In recent years, malware developers are quite fond of making fun of Krebs by putting his name in the code.
Mining tool of digital currency is increasing.
BTCMine is only part of a new trend. Over the past few months, researchers from around the world have discovered many illegal money-mining tools. This trend can be attributed to the popularity of virtual currencies such as Ethereum, Monero or Zcash. Examples may include:
- CoinMiner: targets to Windows, through NSA's EternalBlue flaw.
- DevilRobber: targets at the new Mac.
- Trojan.BtcMine.1259: targets Windows through the NSA's DoublePulsar vulnerability.
- EternalMiner: targets Windows through the SambaCry vulnerability.
- Adylkuzz - targets Windows through the NSA's EternalBlue vulnerability.
- Bondnet - targets Windows Servers via RDP.
- NsCpuCNMiner: targets to Seagate NSA devices.
- Many other tools target at Zcash currency.
For efficient Bitcoin mining, users need special hardware, but with Ethereum, Monero or Zcash, they can still make a profit using a regular PC. Or in the case of BTCMine is through the Linux machine.
If you are using Telnet to connect to Linux devices, make sure your account has a strong password. If the account has a password, make sure it is not the default password on the device or passwords that are easy to guess.
Source: https://quantrimang.com
so nice sharing
Nice post brother...upvoted..keep it #steemup
Nice post brother
Thanks for sharing....