It is currently 20-10-2017 06:30

Trojan for mining cryptocurrency Mal/Miner-attack C network attached storage Seagate Central

Trojan for mining cryptocurrency Mal/Miner-attack C network attached storage Seagate Central

by sigismund » 2016-09-11 23:28:18


the Malware exploits an error in the design of devices and copies itself to the shared folders.


The researchers at SophosLabs have reported a new version of the malware Mal/Miner-C (also known as PhotoMiner) designed for mining cryptocurrency. The malware infects NAS Seagate Central device and uses them to infect connected computers with the aim of obtaining cryptocurrency Monero.

Mal/Miner-C exploits an error in the design of SSDs, and Seagate Central copies itself to the shared folders. NAS devices allow users to access folders not only on a local network but also remotely. According to experts, the devices contain the Seagate Central shared folder, access to which can even get anonymous an unauthorized user, and it can neither be removed nor deactivated.

The number of files copied by the malware to a shared folder that contains the script Photo.scr using the standard icon of a Windows folder. When you open a folder, the script runs and installs on a system of application for mining Monero.

Researchers at SophosLabs have identified almost 7 thousand devices Seagate Central connected to the Internet. The attackers were able to infect 70% of them. According to experts, in the course of their activities, the operators of the Trojan earned about €76,6 million ($86,4 thousand).

Currently, the only way to prevent the exploitation of vulnerabilities in network Seagate Central is disable remote access.
sigismund
moderators
Сообщений: 788
Депозит: 0 BTC

Rating: 5