logo
Just in:
Grayscale Makes Another Large Bitcoin Transfer to Coinbase Prime // Crypto Market Poised for Boom as Baby Boomers Embrace Bitcoin ETFs // Andertoons by Mark Anderson for Fri, 26 Apr 2024 // TPBank and Backbase Clinch ‘Best Omni-Channel Digital CX Solution’ at the Digital CX Awards 2024 // UAE Extends National Day Wishes to Ethiopia // Abu Dhabi Unveils Online Portal to Strengthen Healthcare Workforce // e& UAE Unveils Strategic Roadmap // VARA Introduces Thai-Inspired Corporate Catering Menu in Seattle, Washington // Downpours in Oman and UAE Likely Amplified by Warming Planet // “Hello China, Sunshine Hainan” International Media Tour witnessed the evolution of Hainan’s tourism and culture // ByteDance Eyes US Shutdown for TikTok // Liverpool FC continues international growth with first official retail partnership in South Korea // World Football Federation Secures Sponsorship From Saudi Oil Giant // Nobuyoshi Araki’s “Paradise” Presented by Forward Fashion’s Artelli A Hong Kong and Macau Collaborative Tribute to Four Decades of Iconic Photography // Forward Fashion’s Artelli Presents: Nobuyoshi Araki’s “Paradise” Starting from April 27th, at K11 MUSEA // CapBridge Shares Insights on the Recent Launch of Digital Asset ETFs in Hong Kong // Andertoons by Mark Anderson for Sat, 27 Apr 2024 // World Intellectual Property Day: OPPO Maintains Top 10 Global IP Ranking for Fifth Consecutive Year // MENA Debt Surge Raises Concerns for Global Economic Stability // UN Commends Vietnam’s Progress on Climate Goals //
TAP Research
0 likes

Another large-scale cyberattack underway: experts

1495095026 adylkuzzisbe


Adylkuzz is believed to have infected more computers than WannaCry, using the same vulnerabilities
Adylkuzz is believed to have infected more computers than WannaCry, using the same vulnerabilities

Another large-scale, stealthy cyberattack is underway on a scale that could dwarf last week’s assault on computers worldwide, a global cybersecurity firm told AFP on Wednesday.


The new attack targets the same vulnerabilities the WannaCry ransomware worm exploited but, rather than freeze files, uses the hundreds of thousands of computers believed to have been infected to mine .

ADVERTISEMENT

Following the detection of the WannaCry attack on Friday, “researchers at Proofpoint discovered a new attack linked to WannaCry called Adylkuzz,” said Nicolas Godier, a researcher at the security firm.

“It uses the hacking tools recently disclosed by the NSA and which have since been fixed by Microsoft in a more stealthy manner and for a different purpose,” he said.

Instead of completely disabling an infected computer by encrypting data and seeking a ransom payment, Adylkuzz uses the machines it infects to “mine” in a background task a virtual currency, Monero, and transfer the money created to the authors of the virus.

Virtual currencies such as Monero and Bitcoin use the computers of volunteers for recording transactions. They are said to “mine” for the currency and are occasionally rewarded with a piece of it.

Proofpoint said in a blog that symptoms of the attack include loss of access to shared Windows resources and degradation of PC and server performance, effects which some users may not notice immediately.

“As it is silent and doesn’t trouble the user, the Adylkuzz attack is much more profitable for the cyber criminals. It transforms the infected users into unwitting financial supporters of their attackers,” said Godier.

Proofpoint said it has detected infected machines that have transferred several thousand dollars worth of Monero to the creators of the virus.

The firm believes Adylkuzz has been on the loose since at least May 2, and perhaps even since April 24, but due to its stealthy nature was not immediately detected.

“We don’t know how big it is” but “it’s much bigger than WannaCry”, Proofpoint’s vice president for email products, Robert Holmes, told AFP.

A US official on Tuesday put the number of computers infected by WannaCry at over 300,000.

“We have seen that before—malwares mining cryptocurrency—but not this scale,” said Holmes.

The WannaCry attack has sparked havoc in computer systems worldwide.

Britain’s National Health Service, US package delivery giant FedEx, Spanish telecoms giant Telefonica and Germany’s Deutsche Bahn rail network were among those hit.


Explore further:
Worldwide ransomware cyberattacks: What we know

© 2017 AFP

Source link

ADVERTISEMENT

ADVERTISEMENT

Share

Related posts

TAP Research
TAP Research
TAP Research
TAP Research
TAP Research
TAP Research
Just in:
UN Commends Vietnam’s Progress on Climate Goals // Nano-Care Deutschland AG launches next generation of sustainable PFAS-free oleophobic coatings // ByteDance Eyes US Shutdown for TikTok // Liverpool FC continues international growth with first official retail partnership in South Korea // Supreme Court dismisses pleas for 100% VVPAT verification // World Intellectual Property Day: OPPO Maintains Top 10 Global IP Ranking for Fifth Consecutive Year // Rafah: Make or break for Netanyahu? // Andertoons by Mark Anderson for Sat, 27 Apr 2024 // Heavy Rainfall Disrupts UAE Construction Boom // Grayscale Makes Another Large Bitcoin Transfer to Coinbase Prime // Abu Dhabi Unveils Online Portal to Strengthen Healthcare Workforce // “Hello China, Sunshine Hainan” International Media Tour witnessed the evolution of Hainan’s tourism and culture // World Football Federation Secures Sponsorship From Saudi Oil Giant // Forward Fashion’s Artelli Presents: Nobuyoshi Araki’s “Paradise” Starting from April 27th, at K11 MUSEA // CapBridge Shares Insights on the Recent Launch of Digital Asset ETFs in Hong Kong // Election Commission Of India Degrades Itself To Modi’s Own Commission // Saudi Arabia on Verge of Sending First Delegate to Miss Universe // Nobuyoshi Araki’s “Paradise” Presented by Forward Fashion’s Artelli A Hong Kong and Macau Collaborative Tribute to Four Decades of Iconic Photography // UAE Extends National Day Wishes to Ethiopia // e& UAE Unveils Strategic Roadmap //