Cryptojacking campaign targets Linux servers that haven't had patches for known vulnerabilities applied.

A form of cryptojacking malware has added the ability to disable cloud security software to help avoid detection and increase its chance of illicitly mining for cryptocurrency without being discovered.

It's the first time this attack technique has ever been seen, said the researchers at security company Palo Alto Networks' research division Unit 42 who've detailed the technical capabilities of the campaign.

Cryptocurrency mining malware remains one of the most common threats to internet-connected machines -- ranging from IoT devices, to computers, all the way up to server farms.

This particular family of Monero cryptomining malware -- which appears to be related to Xbash -- targets public cloud infrastructure running on Linux servers, gaining administrative control over the hosts and forcing it to uninstall security products in the same way a legitimate admin would...

Read more: This cryptocurrency mining malware now disables security software to help remain undetected | ZDNet

Posted By: Brink
17 Jan 2019