Packing batteries with more punch
Indian researchers are working on cells that can store more energy, last longer
Barracuda Networks, a provider of cloud-enabled security solutions, highlights the threat landscape in the month of June 2020. The brand researchers have identified a new variant of the crypto miner malware ‘Golang’ targeting both Windows and Linux machines.
The new malware variant is aiming at mining the Monero cryptocurrency using a known miner, XMRig, the company mentioned in its official release.
While the volume is still low, Barracuda researchers have recognized only seven IP addresses linked to this new malware variant so far, all based out of China.
It has also been noticed that the Golang malware focuses on attacking web application frameworks, application servers, and non-HTTP services such as Redis and MSSQL, instead of targeting the end-users.
Barracuda mentioned that although the previous variants of the malware have targeted only Linux machines, the Golang variation is also attacking Windows machines using a new pool of exploits like Oracle WebLogic, ElasticSearch, Drupal, Hadoop, and IoT devices. For example, some of the exploits the malware includes are targeting the ThinkPHP web application framework, which is popular in China. As in other families of malware, it is safe to assume that this malware will keep evolving, employing more and more exploits, Barracuda noted.
The company further revealed that once the Golang malware infects a machine, it downloads the files like an Init/update script, a miner, a watchdog, a scanner, and a config file for the crypto miner, based on the platform it is attacking. For Windows machines, the malware also adds a backdoor user.
Speaking on the threat highlight, Fleming Shi, CTO at Barracuda Networks, commented: “Malicious actors are once again turning to Golang as a malware language since it is not commonly tracked by antivirus software. As it targets vulnerable servers, it is still a top threat vector that cybercriminals look to exploit.”
He added: We can defend organizations against this malware by monitoring the endpoints for suspicious activity as well as the surge in CPU usage, which is associated with most crypto miners. The threat of any future cryptojacking attack can be minimized by setting up vigorous, regularly tested incident response plans.”
Organizations should have a web application firewall in place and adequately configure as the new Golang malware spreads by scanning the internet for vulnerable machines.
As cybercriminals are always scanning for vulnerabilities to exploit, businesses should be well informed with security patches and updates to stay ahead of these threats.
Being aware of how this malware variant works can help organizations monitor their Windows and Linux servers for such type of malicious activity and take quick actions. For that, they should have a solution in place and a trained security team to identify the warning signs.
Indian researchers are working on cells that can store more energy, last longer
To fix a broken bone, doctors often harvest another bone from the patient’s body or from someone else. It ...
Superconductors from IIScScientists at IISc Bangalore have invented a device with a nanocrystal structure ...
Engineering and construction giant L&T has won a licence from the Council of Scientific & Industrial ...
Option price falls more than it rises for the same change in underlying
A long-term vacation here is worth a check-in
The fund delivered a return of 31.5% in 2020 compared with the category’s 15.5%
Care Health Insurance’s new rider offers no great benefit. We review its pros and cons
In these isolated times when people yearn for a slice of the familiar, amateur and professional chefs are ...
While good writing wars against the cliché, television gives it a natural home
India is ready with two vaccines to beat the deadliest virus of recent times. The immunisation drive, however, ...
The storming of the Capitol on January 6 could be the prelude to yet another chapter in the US’s long and ...
Digital is becoming dominant media, but are companies and their ad agencies transforming fast enough to make a ...
Slow Network, promoted by journalist-lyricist Neelesh Misra, pushes rural products and experiences
How marketers can use the traditional exchange of festive wishes meaningfully
For Fortune, a brand celebrating its 20th anniversary, it was a rude shock to become the butt of social media ...
Three years after its inception, compliance with GST procedures remains a headache for exporters, job workers ...
Corporate social responsibility (CSR) initiatives of companies are altering the prospects for wooden toys of ...
Aequs Aerospace to create space for large-scale manufacture of toys at Koppal
And it has every reason to smile. Covid-19 has triggered a consumer shift towards branded products as ...
Please Email the Editor