New Hidden Miner Can "Kill" Its "Competitors"

New hidden miner discovered by the researcher has a built-in "kill list" of "competitors"
06 March 2018   567

The researchers found the first hidden cryptocurrency miner, containing the "kill list", that  "kills" the processes of other miners in an attempt to capture all the power of the computer. This is reported by Bleeping Computer.

Malware was discovered by researcher Xavier Mertens of ICS Sans. In addition to the curious function, it does not differ from the many existing miners that were distributed this year, when the attackers switched from ransomware to a new type of attack.

Unlike competitors, the author of the miner realized that this market is becoming rather crowded, and infecting a device that does not already have several similar viruses becomes more and more difficult, which is why they have to fight for the power of the CPU and GPU.

To solve this problem, the author analyzed what miners most often infect devices, and compiled a list of system processes under the guise of which viruses act.

When such a trojan gets on the computer, it checks the running processes and, in case of detection of names from the list, stops them.

According to Mertens, experts in the field of cybersecurity can use the work done by the author of the virus to detect infected computers.

It's worth noting that this is not the first trojan containing the function "kill list", but none of them was designed for crypto currency mining.

Chinese Hackers Mined $800k Worth Siacoin Hiddenly

According to the police, hackers in collusion with serving companies hacked 100,000 computers in Internet cafes in 30 Chinese cities
19 June 2018   123

In China, 16 people were arrested who earned $ 800,000 on the illegal mining of Siacoin cryptocurrency in the Internet cafes in dozens of Chinese cities, CoinDesk reports.

According to the police of Chinese Ruian (Zhejiang Province), hackers in collusion with serving companies hacked 100,000 computers in Internet cafes in 30 Chinese cities . Their income was 5 million yuan ($ 800,000).

Hackers used a malicious program that used the computing resources of infected devices to extract Siacoin crypto currency. Malicious software was sold to employees of computer maintenance companies who could download it to a PC in an Internet cafe during scheduled checks.

Suspicions arose in July 2017, when employees of Internet cafes in Ruyan noticed that their computers began to work very slowly. The CPU performance dropped by 70% even after the reboot.

Around the same time, the price of Siacoin according to CoinMarketCap grew by 400% from $ 0.002 in May to more than $ 0.01 in July. Accounts for utility services of Internet cafe Ruiana during this period also significantly increased. This caused their owners to contact the police.

Most Internet cafes in Ruian were served by one company. Its executive director was arrested in August last year, and disclosed information about hackers.