Threat Management, Threat Management, Threat Management

The Outlaw hacking group back to spreading cryptominers and backdoors

The Outlaw hacking group was detected in the early stages of a botnet campaign spreading Monero miners bundled with Perl-based backdoors.

Researchers believe those behind the campaign are still in their testing phase although infection attempts have been spotted in China, according to a June 13 Trend Micro blog post.

The malware gains access to a system with brute-force attacks via SSH, executes two possible command files and is capable of sending remote commands to download and execute the malware.

In addition, the Perl-based backdoor component is capable of launching distributed denial-of-service (DDoS) attacks, which allow the cybercriminals to monetize their botnet through cryptocurrency mining and by offering DDoS-for-hire services.

Researches recommend users close unused ports to secure ports that are regularly open for system administrators' support.

Related

Significant reduction in March ransomware incidence a potential ruse

Attacks involving ransomware were discovered by NCC Group to have totaled 600 in March which is 32% lower than in February but 46% higher than the same month last year with the month-to-month decline believed by NCC Head of Threat Intelligence Matt Hull to be a "red herring" after the recent surge in intrusions, Infosecurity Magazine reports.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

Related Terms

Black HatBotnetCovert ChannelsDefacementDenial of ServiceDictionary AttackDisruptionDistributed ScansDomain HijackingDumpster Diving

You can skip this ad in 5 seconds