Botnet to Destroy Mining Malware

New strange botnet is called Fbot and is discovered by security researchers Qihoo 360Netlab team
19 September 2018   2171

Specialists in the field of cyber security have discovered a new botnet, which instead of malicious actions searches and destroys hidden mining malware. This is reported by CoinDesk.

Botnet called Fbot is a variation of the Satori, which in turn is based on the Mirai program. The latter is often used for DDoS attacks. However, in the case of Fbot, the module for DDoS attacks is deactivated and replaced by the device search function with the software installed for hidden mining.

The new botnet was investigated in detail by the Qihoo 360Netlab team. As noted in their blog, Fbot is looking for a malicious program called com.ufo.miner, which is a variation of the Monero miner called ADB.Miner. The latter is aimed at devices under the Android operating system.

The program is distributed through open ports, and then deletes com.ufo.miner if it finds it. Fbot is programmed to scan the network, spread over it, install over malicious software, and then self-destruct.

It is noteworthy that the botnet uses a decentralized alternative to EmerDNS instead of the standard Domain Name System (DNS). Because of this, the address is harder to track and close.

The choice of Fbot using EmerDNS other than traditional DNS is pretty interesting, it raised the bar for security researcher to find and track the botnet (security systems will fail if they only look for traditional DNS names).
 

Qihoo 360 Netlab Researchers

It is not yet clear whether Fbot was created with good intentions, or to eliminate competitors in the market.

According to Trend Micro researchers, during the first half of 2017, the number of cases of unauthorized cryptomoney detection increased by 956%.

Iran to Issue Over 1000 Mining Licenses

Amir Hossein Saeedi Naeini from Iranian ICT Guild Organization said that crypto mining industry attracts many in Iran
27 January 2020   171

Over the past six months, the Iranian Ministry of Industry has issued more than 1000 cryptocurrency mining licenses. This was announced by Amir Hossein Saeedi Naeini, representative of the ICT Guild Organization.

According to him, cryptocurrency mining is a new industry that attracts many in Iran. He noted that miners must obtain a license to work.

The Ministry of Industry, Mine and Trade has issued more than 1,000 licenses for cryptocurrency mining in the country. Our studies show that the crypto mining industry has the potential to add $8.5 billion to the economy.

 

Amir Hossein Saeedi Naeini

 ICT Guild Organization

 He believes that the cryptocurrency industry can help Iran's economy. However, he explained that the high cost of electricity is a serious problem for cryptocurrency miners.

High electricity tariffs plus stringent regulations have made the sector less appealing for small investors.

 

Amir Hossein Saeedi Naeini

 ICT Guild Organization

 He expressed the opinion that “the operating conditions in this industry should not be such that only large capitalists enter the cryptocurrency mining market but that all miners can operate.” He emphasized that changing electricity tariffs could stimulate the mining industry to generate more revenue.