A Russian botnet group called Prometei is exploiting unpatched Microsoft Exchange Server vulnerabilities to mine cryptocurrency across the world, a new report by
Cryptomining Campaign Leverages Exchange Server Flaws govinfosecurity.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from govinfosecurity.com Daily Mail and Mail on Sunday newspapers.
Cryptomining Campaign Leverages MS Exchange Server Flaw Twitter Get Permission A Russian botnet group called Prometei is exploiting critical Microsoft Exchange Server vulnerabilities to mine cryptocurrency from various organizations across the world, a new report by security firm Cybereason finds.
Cybereason notes the Russian campaign is targeting victim organizations to install monero cryptominer on corporate endpoints, adding that the group appears to be financially-motivated. The threat actor appears to be Russian speaking and is purposely avoiding infections in former Soviet bloc countries, Cybereason notes. The main objective of Prometei is to install the Monero crypto miner on corporate endpoints. To spread across networks, the threat actor is using known Microsoft Exchange vulnerabilities, in addition to known exploits EternalBlue and BlueKeep.
FBI and CISA: APT Groups Targeting Government Agencies
May 5, 2021 Twitter Get Permission
The U.S. Cybersecurity and Infrastructure Security Agency and the FBI warn that unidentified nation-state actors are scanning for three vulnerabilities in Fortinet s operating system, FortiOS, to likely target government and private sector companies for cyberespionage.
In a joint alert released on Friday, the agencies note nation-state actors are scanning for FortiOS vulnerabilities tracked as CVE-2018-13379, CVE-2020-12812, CVE-2019-5591 for initial attacks.
The alert does not disclose details of the threat actors, but says the agencies have detected a surge in scanning activities for the vulnerabilities since March. The agencies say the attackers could use the vulnerabilities to gain access to the networks of government or private entities.
Hades Ransomware Targets 3 US Companies bankinfosecurity.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from bankinfosecurity.com Daily Mail and Mail on Sunday newspapers.