Kaspersky Lab researchers have found a new crypto-currency miner – PowerGhost – which has hit corporate networks in several regions, mostly in Latin America. This is the latest in a worrying trend of cybercriminals increasingly using miners in targeted attacks, in their pursuit of money.

 

As this trend grows, enterprises will be put at risk, as miners sabotage and slow down their computer networks, damaging overall business processes and lining their own pockets in the process.

 

Crypto-currency miners are a hot cybersecurity topic right now. This specialist “mining” software creates new coins by using the computing power of a victim PC and mobile devices.

 

Malicious miners do so at the expense of other users, capitalizing on the power of their computers and devices without their knowledge. The threat has sky rocketed in recent times, replacing ransomware as the main type of malicious software, as previous Kaspersky Lab research has shown.

 

However, the emergence of PowerGhost adds a new dimension to the trend. It demonstrates that malicious miner developers are shifting to targeted attacks to make more money, as Kaspersky Lab researchers had previously predicted.

 

PowerGhost is distributed within corporate networks, infecting both workstations and servers. The main victims of this attack so far have been corporate users in Brazil, Colombia, India, and Turkey.

 

Interestingly enough, PowerGhost uses multiple fileless techniques to discreetly gain a foothold in corporate networks – meaning that the miner does not store its body directly onto a disk, increasing the complexity of its detection and remediation.

 

Machine infection occurs remotely through exploits or remote administration tools. When the machine is infected, the main body of the miner is downloaded and run without being stored on the hard disk.

 

Once this has happened, cybercriminals can arrange for the miner to automatically update, spread within the network, and launch the crypto-mining process.

 

PowerGhost attacks on businesses, for the purpose of installing miners, raise new concerns about crypto-mining software. The miner we examined indicates that targeting users is not enough – cybercriminals are now turning their attention to enterprises too. And this makes crypto-currency mining a threat to the business community,” said Vladas Bulavas, malware analyst at Kaspersky Lab.

 

Kaspersky Lab products detect the threat as

    • PDM:Trojan.Win32.Generic
    •  PDM:Exploit.Win32.Generic
    • HEUR:Trojan.Win32.Generic
    • not-a-virus:HEUR:RiskTool.Win32.BitMiner.gen

To reduce the risk of infection with miners, users are advised to:

  1.  Always keep software updated on all the devices used. To prevent miners from exploiting vulnerabilities, it will be best to use tools that can automatically detect vulnerabilities and download and install patches.
  2. Don’t overlook less obvious targets, such as queue management systems, POS terminals, and even vending machines. Such equipment can also be hijacked to mine cryptocurrency.
  3. Use a dedicated security solution that is empowered with application control, behavior detection, and exploit prevention components that monitor the suspicious actions of applications and block malicious file executions. Kaspersky Endpoint Security for Business includes these functions.
  4. To protect the corporate environment, employees and IT teams must be educated on keeping sensitive data separate and restricting access.

To learn more about the PowerGhost threat, please read the blog post available at Securelist.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Digital Profiling: Kaspersky Lab Experts Uncover How Much Your Smartwatch Can Tell About You
Techworld Date Posted: 8 June 2018 1:51 PM | 196 Views
New research shows that smartwatches can become tools for spying on their owners, by collecting silent accelerometer and gyroscope signals that - after analysis - could be turned into datasets unique to the smartwatch.... See More
 
Digital Profiling: Kaspersky Lab Experts Uncover How Much Your Smartwatch Can Tell About You
Techworld Date Posted: 1:51 PM | 196 Views
New research shows that smartwatches can become tools for spying on their owners, by collecting silent accelerometer and gyroscope signals that - after analysis - could be turned into datasets unique to the smartwatch...See More

 
Smart Widens Lead in Overall Mobile Data Download Speeds – OpenSignal
Techworld Date Posted: 1 June 2018 9:00 AM | 236 Views
PLDT wireless subsidiary Smart Communications, Inc. has almost doubled its overall mobile data download speeds over the past year largely because of improved LTE availability and speeds, according to a just-released analysis by independent.... See More
 
Smart Widens Lead in Overall Mobile Data Download Speeds – OpenSignal
Techworld Date Posted: 9:00 AM | 236 Views
PLDT wireless subsidiary Smart Communications, Inc. has almost doubled its overall mobile data download speeds over the past year largely because of improved LTE availability and speeds, according to a just-released analysis by independent...See More

 
UBTECH Robotics Introduces STEM-Friendly Jimu Robots for Kids and Teens in the Philippines
Techworld Date Posted: 28 September 2017 4:26 PM | 222 Views
UBTECH Robotics, the company best known globally as the industry leader in artificial intelligence and humanoid robotics today introduced a new line of STEM-friendly Jimu Robots for kids and teens in the Philippines. UBTECH's Jimu.... See More
 
UBTECH Robotics Introduces STEM-Friendly Jimu Robots for Kids and Teens in the Philippines
Techworld Date Posted: 4:26 PM | 222 Views
UBTECH Robotics, the company best known globally as the industry leader in artificial intelligence and humanoid robotics today introduced a new line of STEM-friendly Jimu Robots for kids and teens in the Philippines. UBTECH's Jimu...See More

 
Globe Telecom Signs Multi-Year Intelligent Operations Deal with Amdocs for Continuous Enhancement of Services and Operations
Techworld Date Posted: 1 March 2018 2:38 PM | 302 Views
Amdocs, (NASDAQ: DOX), a leading provider of software and services to communications and media companies, today announced that it has signed a multi-year services contract with Globe Telecom, one of the Philippines’ largest telecommunications.... See More
 
Globe Telecom Signs Multi-Year Intelligent Operations Deal with Amdocs for Continuous Enhancement of Services and Operations
Techworld Date Posted: 2:38 PM | 302 Views
Amdocs, (NASDAQ: DOX), a leading provider of software and services to communications and media companies, today announced that it has signed a multi-year services contract with Globe Telecom, one of the Philippines’ largest telecommunications...See More

 
Fortinet Recommended in NSS Labs Next-Generation Intrusion Prevention System (NGIPS) Test
Techworld Date Posted: 16 November 2017 10:31 AM | 331 Views
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today announced the results of the latest NSS Labs Next-Generation Intrusion Prevention System (NGIPS) group test report.. See More
 
Fortinet Recommended in NSS Labs Next-Generation Intrusion Prevention System (NGIPS) Test
Techworld Date Posted: 10:31 AM | 331 Views
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today announced the results of the latest NSS Labs Next-Generation Intrusion Prevention System (NGIPS) group test report.See More

 
From Cloud Growth to a Cloud Mess: Two Out of Three SMBs Struggle with Over-Complicated IT Infrastructure
Techworld Date Posted: 5 July 2018 2:01 PM | 218 Views
As their businesses grow, companies increasingly embrace new business tools and cloud services in an attempt to make their employees’ working lives more efficient and flexible, as well as reduce expenditures. . See More
 
From Cloud Growth to a Cloud Mess: Two Out of Three SMBs Struggle with Over-Complicated IT Infrastructure
Techworld Date Posted: 2:01 PM | 218 Views
As their businesses grow, companies increasingly embrace new business tools and cloud services in an attempt to make their employees’ working lives more efficient and flexible, as well as reduce expenditures. See More

 
Nokia 8 Takes Its First Bite of Oreo™
Techworld Date Posted: 28 November 2017 10:24 AM | 130 Views
HMD Global, the home of Nokia phones, is excited to announce that Android™ 8.0 Oreo™ is now available for the Nokia 8. . See More
 
Nokia 8 Takes Its First Bite of Oreo™
Techworld Date Posted: 10:24 AM | 130 Views
HMD Global, the home of Nokia phones, is excited to announce that Android™ 8.0 Oreo™ is now available for the Nokia 8. See More

 
Nokia 7 plus Is Now Out in Philippine Market
Techworld Date Posted: 3 May 2018 3:55 PM | 196 Views
HMD, the home of Nokia phones, is happy to bring you the latest news everyone has been waiting for. The flagship hero without the flagship price tag, the Nokia 7 plus, is now officially.... See More
 
Nokia 7 plus Is Now Out in Philippine Market
Techworld Date Posted: 3:55 PM | 196 Views
HMD, the home of Nokia phones, is happy to bring you the latest news everyone has been waiting for. The flagship hero without the flagship price tag, the Nokia 7 plus, is now officially...See More

 
Nokia 8 Flagship Android Smartphone Arrives in PH
Techworld Date Posted: 30 September 2017 11:39 AM | 190 Views
Ending weeks of anticipation, HMD Global unveils Nokia's new flagship smartphone, the Nokia 8, today at the Intramuros Ballroom, Manila House, Taguig.. See More
 
Nokia 8 Flagship Android Smartphone Arrives in PH
Techworld Date Posted: 11:39 AM | 190 Views
Ending weeks of anticipation, HMD Global unveils Nokia's new flagship smartphone, the Nokia 8, today at the Intramuros Ballroom, Manila House, Taguig.See More

 
OpenSignal Cites Smart for Having the Country’s Fastest LTE Network
Techworld Date Posted: 17 April 2018 1:46 PM | 635 Views
Mobile analytics firm OpenSignal has recognized PLDT wireless unit Smart Communications, Inc. for having the country’s fastest LTE network, bestowing the company four citations including best in 4G LTE download speed; best in overall.... See More
 
OpenSignal Cites Smart for Having the Country’s Fastest LTE Network
Techworld Date Posted: 1:46 PM | 635 Views
Mobile analytics firm OpenSignal has recognized PLDT wireless unit Smart Communications, Inc. for having the country’s fastest LTE network, bestowing the company four citations including best in 4G LTE download speed; best in overall...See More


Power by

Download Free AZ | Free Wordpress Themes