Monero Cryptojacked Through Flaw in Linux
An ongoing new hack has led to almost 75,000 USD worth of Monero being mined from computers without the owners’ knowledge, according to Bitcoinist.
Specifically, Linux servers in Japan, Taiwan, China, India, and the US are being targeted by the malicious code.
The hack was discovered by a Japanese IT security company called Trend Micro. It found that two Monero wallets are receiving funds from the hack, and they held 74,677 USD in cryptocurrency as of the 21st of March 2018.
The weakness is found in a plugin called ‘Weathermap’, used in the popular Cacti open-source graphing programme. The malicious code is called watchd0g.sh. Once installed, it modifies some of the system’s technical parameters to the recommended value for mining Monero (XMR). The code is executed every time the computer is turned on, runs every three minutes, and will automatically re-download if deleted.
It will then download a file called dada.x86_64, which is a modified XMRig miner.
When used legitimately, an XMRig is executed with a configuration file requring with parameters to be set – things such as the Monero wallet and password of the user, maximum CPU usage, mining server, and so on. Trend Micro found that the malicious miner is modified so that it is pre-configured, and the command-line display is not visible.
The attack is ongoing – Trend Micro recommends that data from the Cacti programme be kept “internal to the environment”, that systems be kept updated with patches, and a “proactive incident response strategy that includes actively hunting and responding to threats”. It also noted that the current intrusions target a weakness in the Linux operating system for which a patch has been available for nearly five years.
Monero is a cryptocurrency designed to be both completely anonymous and easy to mine. This has led to hackers secretly embedding mining codes into websites and applications, such as happened to Facebook Messenger in December. This new crime is known as cryptojacking
Security issues aside, Monero is a popular coin, with a market capitalisation of almost 3 billion USD.
If you enjoyed or find this post interesting then please:
Up-vote the post,
follow me @jakob2450
and resteem
Thank you for your support
For future viewers: price of bitcoin at the moment of posting is 7923.80USD