Latest Cryptojacking news

Crypto miner arrested for skipping on $3.5 million in cloud server bills

The U.S. Department of Justice has announced the arrest and indictment of Charles O. Parks III, known as "CP3O," for allegedly renting large numbers of cloud servers to conduct crypto mining and then skipping out on paying the bills.
- Bill Toulas
- April 15, 2024
- 02:10 PM
- 3
New Migo malware disables protection features on Redis servers

Security researchers discovered a new campaign that targets Redis servers on Linux hosts using a piece of malware called 'Migo' to mine for cryptocurrency.
- Bill Toulas
- February 20, 2024
- 02:38 PM
- 0
Hacker spins up 1 million virtual servers to illegally mine crypto

A 29-year-old man in Ukraine was arrested this week for using hacked accounts to create 1 million virtual servers used to mine $2 million in cryptocurrency.
- Bill Toulas
- January 13, 2024
- 10:09 AM
- 4
Qubitstrike attacks rootkit Jupyter Linux servers to steal credentials

Hackers are scanning for internet-exposed Jupyter Notebooks to breach servers and deploy a cocktail of malware consisting of a Linux rootkit, crypto miners, and password-stealing scripts.
- Bill Toulas
- October 18, 2023
- 06:00 AM
- 0
Windows cryptomining attacks target graphic designer's high-powered GPUs

Cybercriminals are leveraging a legitimate Windows tool called 'Advanced Installer' to infect the computers of graphic designers with cryptocurrency miners.
- Bill Toulas
- September 07, 2023
- 11:46 AM
- 0
Microsoft: Hackers hijack Linux systems using trojanized OpenSSH version

Microsoft says Internet-exposed Linux and Internet of Things (IoT) devices are being hijacked in brute-force attacks as part of a recently observed cryptojacking campaign.
- Sergiu Gatlan
- June 22, 2023
- 01:33 PM
- 3
RapperBot DDoS malware adds cryptojacking as new revenue stream

New samples of the RapperBot botnet malware have added cryptojacking capabilites to mine for cryptocurrency on compromised Intel x64 machines.
- Bill Toulas
- May 10, 2023
- 07:00 PM
- 0
First-known Dero cryptojacking operation seen targeting Kubernetes

The first known cryptojacking operation mining the Dero coin has been found targeting vulnerable Kubernetes container orchestrator infrastructure with exposed APIs.
- Bill Toulas
- March 15, 2023
- 06:00 AM
- 0
New S1deload Stealer malware hijacks Youtube, Facebook accounts

An ongoing malware campaign targets YouTube and Facebook users, infecting their computers with a new information stealer that will hijack their social media accounts and use their devices to mine for cryptocurrency.
- Sergiu Gatlan
- February 22, 2023
- 12:27 PM
- 0
451 PyPI packages install Chrome extensions to steal crypto

Over 450 malicious PyPI python packages were found installing malicious Chromium browser extensions to hijack cryptocurrency transactions made through browser-based crypto wallets and websites.
- Bill Toulas
- February 13, 2023
- 02:46 PM
- 0
Google Chrome extension used to steal cryptocurrency, passwords

An information-stealing Google Chrome browser extension named 'VenomSoftX' is being deployed by Windows malware to steal cryptocurrency and clipboard contents as users browse the web.
- Bill Toulas
- November 21, 2022
- 01:24 PM
- 0
Massive cryptomining campaign abuses free-tier cloud dev resources

An automated and large-scale 'freejacking' campaign abuses free GitHub, Heroku, and Buddy services to mine cryptocurrency at the provider's expense.
- Bill Toulas
- October 25, 2022
- 11:39 AM
- 0
Thousands of hackers flock to 'Dark Utilities' C2-as-a-Service

Security researchers found a new service called Dark Utilities that provides an easy and inexpensive way for cybercriminals to set up a command and control (C2) center for their malicious operations.
- Bill Toulas
- August 04, 2022
- 03:00 PM
- 0
Hacking group '8220' grows cloud botnet to more than 30,000 hosts

A cryptomining gang known as 8220 Gang has been exploiting Linux and cloud app vulnerabilities to grow their botnet to more than 30,000 infected hosts.
- Bill Toulas
- July 19, 2022
- 06:52 PM
- 0
Alibaba ECS instances actively hijacked by cryptomining malware

Threat actors are hijacking Alibaba Elastic Computing Service (ECS) instances to install cryptominer malware and harness the available server resources for their own profit.
- Bill Toulas
- November 15, 2021
- 02:15 PM
- 1
Huawei Cloud targeted by updated cryptomining malware

A new version of a 2020 crypto-mining malware that was previously targeting Docker containers has now been spotted focusing on new cloud service providers like the Huawei Cloud.
- Bill Toulas
- October 11, 2021
- 10:44 AM
- 0
Attackers deploy cryptominers on Kubernetes clusters via Argo Workflows

Threat actors are abusing misconfigured Argo Workflows instances to deploy cryptocurrency miners on Kubernetes (K8s) clusters.
- Sergiu Gatlan
- July 23, 2021
- 11:27 AM
- 0
Microsoft warns of cryptomining attacks on Kubernetes clusters

Microsoft warns of an ongoing series of attacks compromising Kubernetes clusters running Kubeflow machine learning (ML) instances to deploy malicious containers that mine for Monero and Ethereum cryptocurrency.
- Sergiu Gatlan
- June 09, 2021
- 01:05 PM
- 0
New Kubernetes malware backdoors clusters via Windows containers

New malware active for more than a year is compromising Windows containers to compromise Kubernetes clusters with the end goal of backdooring them and paving the way for attackers to abuse them in other malicious activities.
- Sergiu Gatlan
- June 07, 2021
- 06:51 AM
- 0
Microsoft Defender now blocks cryptojacking malware using Intel TDT

Microsoft today announced that Microsoft Defender for Endpoint, the enterprise version of its Windows 10 Defender antivirus, now comes with support for blocking cryptojacking malware using Intel's silicon-based Threat Detection Technology (TDT).
- Sergiu Gatlan
- April 26, 2021
- 12:54 PM
- 0