Bitcoin
$6,717.58 4.36%
BTC · 1w

Cryptocurrency mining attacks using leaked NSA hacking tools are still highly active a year later

Cryptocurrency mining attacks using leaked NSA hacking tools are still highly active a year later

Zack Whittaker @zackwhittaker / 11 hours

It’s been over a year since highly classified exploits built by the National Security Agency were stolen and published online.

One of the tools, dubbed EternalBlue, can covertly break into almost any Windows machine around the world. It didn’t take long for hackers to start using the exploits to run ransomware on thousands of computers, grinding hospitals and businesses to a halt. Two separate attacks in as many months used WannaCry and NotPetya ransomware, which spread like wildfire. Once a single computer in a network was infected, the malware would also target other devices on the network. The recovery was slow and cost companies hundreds of millions in damages.

Yet, more than a year since Microsoft released patches that slammed the backdoor shut, almost a million computers and networks are still unpatched and vulnerable to attack.

Although WannaCry infections have slowed, hackers are still using the publicly accessible NSA exploits to infect computers to mine cryptocurrency.

Nobody knows that better than one major Fortune 500 multinational, which was hit by a massive WannaMine cryptocurrency mining infection just days ago.

“Our customer is a very large corporation with multiple offices around the world,” said Amit Serper, who heads the security research team at Boston-based Cybereason.

“Once their first machine was hit the malware propagated to more than 1,000 machines in a day,” he said, without naming the company.

Cryptomining attacks have been around for a while. It’s more common for hackers to inject cryptocurrency mining code into vulnerable websites, but the payoffs are low. Some news sites are now installing their own mining code as an alternative to running ads.

But WannaMi...

Continue on techcrunch.com
Recent news
BTC · medium.com · 2h

When 80% of the market is inflated by fake volume, I am glad to see such kind of platforms coming around to give clarity on these shady markets! Say NO to trading manipulation, lack of liquidity transparency, front-running orders, tailgating and exchanges flooded by biased volume retranscription!

After a year and a half of back-end development, bug fixing, user interface enhancement, connectivity and security testing, our team is extremely proud to announce you the full deployment of…
BTC · theice.com · 17h

Bitcoin ETF? Stop begging for it!!! We don’t need it, seriously folks!!! Because Bakkt ICE Futures U.S. offers physically delivered daily futures contracts on Bitcoin traded in BTC/USD (subject to CFTC regulatory approval, NOT SEC approval). It’s coming this November.

ICE Futures U.S. offers physically delivered daily futures contracts on Bitcoin traded in BTC/USD (subject to regulatory approval). These contracts will be traded on ICE’s electronic trading pla...