Botnet to Destroy Mining Malware

New strange botnet is called Fbot and is discovered by security researchers Qihoo 360Netlab team
19 September 2018   954

Specialists in the field of cyber security have discovered a new botnet, which instead of malicious actions searches and destroys hidden mining malware. This is reported by CoinDesk.

Botnet called Fbot is a variation of the Satori, which in turn is based on the Mirai program. The latter is often used for DDoS attacks. However, in the case of Fbot, the module for DDoS attacks is deactivated and replaced by the device search function with the software installed for hidden mining.

The new botnet was investigated in detail by the Qihoo 360Netlab team. As noted in their blog, Fbot is looking for a malicious program called com.ufo.miner, which is a variation of the Monero miner called ADB.Miner. The latter is aimed at devices under the Android operating system.

The program is distributed through open ports, and then deletes com.ufo.miner if it finds it. Fbot is programmed to scan the network, spread over it, install over malicious software, and then self-destruct.

It is noteworthy that the botnet uses a decentralized alternative to EmerDNS instead of the standard Domain Name System (DNS). Because of this, the address is harder to track and close.

The choice of Fbot using EmerDNS other than traditional DNS is pretty interesting, it raised the bar for security researcher to find and track the botnet (security systems will fail if they only look for traditional DNS names).
 

Qihoo 360 Netlab Researchers

It is not yet clear whether Fbot was created with good intentions, or to eliminate competitors in the market.

According to Trend Micro researchers, during the first half of 2017, the number of cases of unauthorized cryptomoney detection increased by 956%.

Bear Market to Hit Mining Hard

BitMEX research division presented an analysis of the impact of market decline on the mining industry
11 December 2018   121

The cryptocurrency market has experienced a marked decline over the past weeks. The BitMEX research division presented an analysis of the impact of these events on the mining industry. Bitcoin hash rate has fallen by 31% since the beginning of November, which is equivalent to the capacity of 1.3 million Bitmain S9 devices. From this, BitMEX concludes that miners as a class are in a difficult situation, however, they may have different conditions, and those who pay more for electricity, are forced to turn off their equipment first, while others may still be quite viable.

The decrease in the price of Bitcoin by 45% since the beginning of November has already caused two recalculations of the complexity of mining to the lower side - by 7.4% and 15.1% on November 16 and December 3, respectively. The first recalculation turned out to be the largest since January 2013, the second - since October 2011.

Bitcoin mining revenue fell from $ 13 million per day in early November to $ 6 million per day in early December. The fall in the size of the miner's encouragement turned out to be even more rapid than the fall in the price of cryptocurrency. This is due to the delay in recalculating the complexity of mining. For the six-day period ending December 3, 21.8% fewer blocks were mined than expected, since the miners left the network before recalculating the difficulty. As a result, in addition to reducing the size of the miners' encouragement in dollar terms, due to lower asset prices, they received 21.8% less bitcoin awards.

One of the popular reasons for the recent decline in the cryptocurrency market is that miners sold bitcoins to cover their costs of hash warsin the Bitcoin Cash network. The monitoring platform Boltzmann recorded an unusually large sale of Bitcoin by the miner on November 12, that is, 3 days before the hard fork of Bitcoin Cash.

BitMEX assumes that the actions of miners over the past weeks could have played a significant role in reducing the market, however, recommends not overestimating their value and reminds that in a bearish trend, prices continue to fall regardless of asset movements and news.