New Cryptojacking Malware Spreads Through Brazil
A new Monero mining malware, targeting any device in Brazil with mining capabilities and infecting them without rightful authorization is plaguing the country as cybersecurity expert Simon Kenin has stated. The expert bases his statements on research and intricate analysis of the infection thread. He adds that it operates on a script known as CoinHive and exposures in MikroTik routers.
As opposed to traditional viruses that are aimed at individual computers, the new thread focuses on infecting these routers through an exposed weakness although the company has quickly amended the break-in, however, many router owners failing to upgrade to the latest patch were also exposed. Currently, the company predicts an infection rate of anywhere between 170K and 200K routers.
Kenin added that hundreds of thousands of the vulnerable routers were operating worldwide including use by internet service providers, companies, and others being used on a daily basis and should each user fail to update their devices, the infectious software could spread internationally. The new malware is only the latest in a series of harmful software used by malicious figures within the crypto ecosystem.
Another famous malware, ZombieBoy, was closely examined and researched this month and instead of targeting routers, the malware was specifically aimed at servers and utilized a different method of mining for crypto. CoinHive, a favored XMR mining script is utilized by the malware. CoinHive does have a legitimate counterpart that requests permission from device owners before mining albeit not nearly as popular and commonly used as the illegal twin.
Simon Kenin continues pounding down on the virus’s developers and users, claiming sloppiness on their end with their new malware. Another malware called SamSam was much more organized and intricate in their targeted victims.