Kaspersky Lab researchers have found a new crypto-currency miner – PowerGhost – which has hit corporate networks in several regions, mostly in Latin America. This is the latest in a worrying trend of cybercriminals increasingly using miners in targeted attacks, in their pursuit of money.

 

As this trend grows, enterprises will be put at risk, as miners sabotage and slow down their computer networks, damaging overall business processes and lining their own pockets in the process.

 

Crypto-currency miners are a hot cybersecurity topic right now. This specialist “mining” software creates new coins by using the computing power of a victim PC and mobile devices.

 

Malicious miners do so at the expense of other users, capitalizing on the power of their computers and devices without their knowledge. The threat has sky rocketed in recent times, replacing ransomware as the main type of malicious software, as previous Kaspersky Lab research has shown.

 

However, the emergence of PowerGhost adds a new dimension to the trend. It demonstrates that malicious miner developers are shifting to targeted attacks to make more money, as Kaspersky Lab researchers had previously predicted.

 

PowerGhost is distributed within corporate networks, infecting both workstations and servers. The main victims of this attack so far have been corporate users in Brazil, Colombia, India, and Turkey.

 

Interestingly enough, PowerGhost uses multiple fileless techniques to discreetly gain a foothold in corporate networks – meaning that the miner does not store its body directly onto a disk, increasing the complexity of its detection and remediation.

 

Machine infection occurs remotely through exploits or remote administration tools. When the machine is infected, the main body of the miner is downloaded and run without being stored on the hard disk.

 

Once this has happened, cybercriminals can arrange for the miner to automatically update, spread within the network, and launch the crypto-mining process.

 

PowerGhost attacks on businesses, for the purpose of installing miners, raise new concerns about crypto-mining software. The miner we examined indicates that targeting users is not enough – cybercriminals are now turning their attention to enterprises too. And this makes crypto-currency mining a threat to the business community,” said Vladas Bulavas, malware analyst at Kaspersky Lab.

 

Kaspersky Lab products detect the threat as

    • PDM:Trojan.Win32.Generic
    •  PDM:Exploit.Win32.Generic
    • HEUR:Trojan.Win32.Generic
    • not-a-virus:HEUR:RiskTool.Win32.BitMiner.gen

To reduce the risk of infection with miners, users are advised to:

  1.  Always keep software updated on all the devices used. To prevent miners from exploiting vulnerabilities, it will be best to use tools that can automatically detect vulnerabilities and download and install patches.
  2. Don’t overlook less obvious targets, such as queue management systems, POS terminals, and even vending machines. Such equipment can also be hijacked to mine cryptocurrency.
  3. Use a dedicated security solution that is empowered with application control, behavior detection, and exploit prevention components that monitor the suspicious actions of applications and block malicious file executions. Kaspersky Endpoint Security for Business includes these functions.
  4. To protect the corporate environment, employees and IT teams must be educated on keeping sensitive data separate and restricting access.

To learn more about the PowerGhost threat, please read the blog post available at Securelist.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
KINGMAX’S New iKey – Tiny USB Fingerprint Reader 1 Fingerprint to Keep Them All
Techworld Date Posted: 14 October 2017 2:22 PM | 248 Views
Do you have a whole book’s worth of passwords? How do you remember so many? Worry not, KINGMAX “iKey-Tiny USB Fingerprint Reader” is here. . See More
 
KINGMAX’S New iKey – Tiny USB Fingerprint Reader 1 Fingerprint to Keep Them All
Techworld Date Posted: 2:22 PM | 248 Views
Do you have a whole book’s worth of passwords? How do you remember so many? Worry not, KINGMAX “iKey-Tiny USB Fingerprint Reader” is here. See More

 
Power Mac Center Pioneers iPhone Display Repairs in PH
Techworld Date Posted: 23 July 2018 2:46 PM | 575 Views
Power Mac Center’s Apple Authorized Service Provider is now offering replacement repair services for damaged iPhone display screens. It is the first Service Center in the country to do so. Coverage includes cracked screens.... See More
 
Power Mac Center Pioneers iPhone Display Repairs in PH
Techworld Date Posted: 2:46 PM | 575 Views
Power Mac Center’s Apple Authorized Service Provider is now offering replacement repair services for damaged iPhone display screens. It is the first Service Center in the country to do so. Coverage includes cracked screens...See More

 
Smart Widens Lead in Overall Mobile Data Download Speeds – OpenSignal
Techworld Date Posted: 1 June 2018 9:00 AM | 346 Views
PLDT wireless subsidiary Smart Communications, Inc. has almost doubled its overall mobile data download speeds over the past year largely because of improved LTE availability and speeds, according to a just-released analysis by independent.... See More
 
Smart Widens Lead in Overall Mobile Data Download Speeds – OpenSignal
Techworld Date Posted: 9:00 AM | 346 Views
PLDT wireless subsidiary Smart Communications, Inc. has almost doubled its overall mobile data download speeds over the past year largely because of improved LTE availability and speeds, according to a just-released analysis by independent...See More

 
Fortinet Offers Essential Cyber-Safety Tips Amidst Escalating Cyber-Attacks
Techworld Date Posted: 21 September 2017 1:22 PM | 499 Views
Fortinet, the global leader in high-performance cyber security solutions, warns businesses and individuals in Philippines to brace for escalating cyber-attacks as cyber-criminals expand their targets to home network devices and mobile devices. Fortinet's latest.... See More
 
Fortinet Offers Essential Cyber-Safety Tips Amidst Escalating Cyber-Attacks
Techworld Date Posted: 1:22 PM | 499 Views
Fortinet, the global leader in high-performance cyber security solutions, warns businesses and individuals in Philippines to brace for escalating cyber-attacks as cyber-criminals expand their targets to home network devices and mobile devices. Fortinet's latest...See More

 
Nokia 6 and Nokia 8110 4G Are Now Out in Philippine Market
Techworld Date Posted: 17 May 2018 10:46 AM | 588 Views
Because we listen to our fans, the new Nokia 6 is made even better to become more than just a smartphone that processes, clicks and communicates, but rather a companion you can trust, depend.... See More
 
Nokia 6 and Nokia 8110 4G Are Now Out in Philippine Market
Techworld Date Posted: 10:46 AM | 588 Views
Because we listen to our fans, the new Nokia 6 is made even better to become more than just a smartphone that processes, clicks and communicates, but rather a companion you can trust, depend...See More

 
Playing an Integral Part of the Nation’s Modernization through Security, Fire and Safety
Techworld Date Posted: 7 August 2018 10:14 AM | 457 Views
The second edition of the Philippines’ leading security, fire and safety event, IFSEC Philippines took place on 29 May – 1 June 2018 at the SMX Convention Center. Attended by 3,879 visitors from around.... See More
 
Playing an Integral Part of the Nation’s Modernization through Security, Fire and Safety
Techworld Date Posted: 10:14 AM | 457 Views
The second edition of the Philippines’ leading security, fire and safety event, IFSEC Philippines took place on 29 May – 1 June 2018 at the SMX Convention Center. Attended by 3,879 visitors from around...See More

 
HyperX Reveals Licensed Headset for PlayStation®4 at ESGS for the First Time in Philippines
Techworld Date Posted: 26 October 2018 4:15 PM | 125 Views
HyperX, the gaming division of Kingston Technology, joins ESGS at the SMX Convention Center, Pasay City in Philippines from October 26th to 28th.. See More
 
HyperX Reveals Licensed Headset for PlayStation®4 at ESGS for the First Time in Philippines
Techworld Date Posted: 4:15 PM | 125 Views
HyperX, the gaming division of Kingston Technology, joins ESGS at the SMX Convention Center, Pasay City in Philippines from October 26th to 28th.See More

 
Celebrate Better Connectivity and Security This Season with D-Link
Techworld Date Posted: 21 December 2018 3:58 PM | 74 Views
Gift loved ones this Christmas with reliable connection and security that last even beyond the holiday season. Leading network products supplier D-Link offers a range of Wi-Fi routers and security cameras. See More
 
Celebrate Better Connectivity and Security This Season with D-Link
Techworld Date Posted: 3:58 PM | 74 Views
Gift loved ones this Christmas with reliable connection and security that last even beyond the holiday season. Leading network products supplier D-Link offers a range of Wi-Fi routers and security camerasSee More

 
White Hot Looks, White Hot Performance – CORSAIR Launches VENGEANCE RGB White DDR4
Techworld Date Posted: 27 September 2017 5:18 PM | 423 Views
CORSAIR®, a world leader in PC components, high-performance gaming hardware and enthusiast memory, today announced a new addition to its line-up of performance RGB-lit DDR4 memory, VENGEANCE RGB White. Clad in a sleek new.... See More
 
White Hot Looks, White Hot Performance – CORSAIR Launches VENGEANCE RGB White DDR4
Techworld Date Posted: 5:18 PM | 423 Views
CORSAIR®, a world leader in PC components, high-performance gaming hardware and enthusiast memory, today announced a new addition to its line-up of performance RGB-lit DDR4 memory, VENGEANCE RGB White. Clad in a sleek new...See More

 
ASUS Republic of Gamers Announces Rapture GT-AC5300
Techworld Date Posted: 29 August 2017 4:41 PM | 283 Views
Modern online games require close teamwork and precise control from players; even a second of unwanted network latency can lose a game. To date, most routers labeled as ‘gaming routers' are largely defined by.... See More
 
ASUS Republic of Gamers Announces Rapture GT-AC5300
Techworld Date Posted: 4:41 PM | 283 Views
Modern online games require close teamwork and precise control from players; even a second of unwanted network latency can lose a game. To date, most routers labeled as ‘gaming routers' are largely defined by...See More


Power by

Download Free AZ | Free Wordpress Themes