A mining trojan hacks PCs

OS Windows can be infected, but there is a way to protect it
22 June 2017   1499
Blockchain

Distributed database that is used to maintain a continuously growing list of records, called blocks.

New Trojan uses a NSA hacking tool to infect computers with Windows. The virus uses available resources on a PC to mine XMR (Monero).

Russian antivirus Dr.Web spotted this virus first. This trojan was discovered under the generic name Trojan.BTCMine.1259. Malware uses an NSA hacking tool named Doublepulsar. It is used to infect computers running non-secure Server Message Block (SMB) services – a network protocol that is being used for sharing files, printers, and serial ports.

Once infected, the virus creates a "backdoor" that allows the hackers to execute code on a machine. Then the NSA’s Doublepulsar exploit is being used to download an original malware loader onto the infected PC. Then the computer is scanned to determine if enough resources are available to execute its payload. If resources are available, a generic malware loader will download a cryptocurrency miner program and begin to mine XMR for the hacker’s wallet. Experts also note interesting "feature" -  virus is able to shut itself down when Task Manager is launched, allowing the malware to remain unspotted.

Trojan.BtcMine.1259 is not the first "mining" virus that uses the Doublepulsar exploit. A similar virus Eternalminer was detected last week. It targets Linux for XMR mining. Wannacry also incorporated Doublepulsar into its protocol, using the exploit as the basis for the SMD worm.

Doublepulsar exploited was spotted in April 2017 by Shadow Brokers with reports that over 36,000 computers had been infected by various viruses utilizing the exploit on April 21st. In April, experts suggested that the real number of infected machines was over 100000. The number of infected computers is now estimated to around 16000, due to Windows system update MS17-010.

New York State to Revise BitLicense Granting Terms

At the moment, BitLicense is the most stringent legal framework for the cryptocurrency industry
23 October 2019   6

The terms for granting the so-called BitLicense, the license required for cryptocurrency companies to work in New York State, will be reviewed. This was stated by the superintendent of the New York Department of Financial Services (NYDFS) Linda Lacewell, reports CoinDesk.

BitLicense is considered the most stringent legal framework for the cryptocurrency industry at the state level. In particular, companies are required to receive it for cryptocurrency transactions of New Yorkers, even if they themselves are based in other jurisdictions.

Last year, Kraken, a San Francisco-based exchange, chose not to receive BitLicense, but to completely leave New York. Earlier this year, the Bittrex exchange (Seattle) also left the state without licensing.

This is a good time to take a look, a responsible look and see how our regime is fitting the current market and … what if any adjustments should we think about making to continue to adapt to sort of a changing industry … that’s going to be one of the things that [we do].
 

Linda Lacewell

Superintendent, New York Department of Financial Services

At the same time, she called not to “be too happy” about possible changes in the rules for the cryptocurrency industry.

According to her, the current regulatory regime “works well,” but the industry has changed since 2015, when BitLicense was introduced.

How has the industry grown? Has it matured in any way? And I don’t want to get too specific, but you know, it’s a good time for a second look.
 

Linda Lacewell

Superintendent, New York Department of Financial Services

 Lacewell did not specify when the revision of licensing terms will be completed and what exactly industry participants can expect in the end.

Since the introduction of the license until June 2018, only 6 companies have received BitLicense, but over the past 20 months, after the regulator has softened its position, 16 more companies have been added to their number.