Well-known Monero mining malware modified to steal user data
|- Malware program “Smominru” had been modified to “steal system access information for possible sale on the dark web.”
- This malware has already infected half a million computers.
Monero (XMR), the privacy-oriented cryptocurrency, has been plagued by mining malware issues again. Carbon Black, an online security firm, revealed in a report that its Threat Analysis Unit found “a secondary component” in a well-known malware program called “Smominru.” The malware script had been modified to “steal system access information for possible sale on the dark web.” This malware has already infected half a million computers.
According to the researchers:
“This discovery indicates a bigger trend of commodity malware evolving to mask a darker purpose and will force a change in the way cybersecurity professionals classify, investigate and protect themselves from threats.”
Smominru was initially detected in May 2017 and was also detected in January 2018. Last year, researchers at security firm, Proofpoint, confirmed that Smominru had been using a National Security Agency (NSA) exploit. This exploit, known as EternalBlue, infects computers with XMR mining malware.
Regarding the latest iteration of the malware, Carbon Black discovered the modifications when they found “unusual activity” across several endpoints. They found sophisticated, multi-stage malware that was sending detailed system metadata to a network of hijacked web servers.” Back in September 2018, the Monero community members released a blog post condemning all such XMR mining malware attacks:
“[We] condemn this malicious, non-consensual use of equipment to mine (XMR) … The Monero community does not want to sit idly by as victims struggle to understand the impact of mining and ransomware.”
Information on these pages contains forward-looking statements that involve risks and uncertainties. Markets and instruments profiled on this page are for informational purposes only and should not in any way come across as a recommendation to buy or sell in these assets. You should do your own thorough research before making any investment decisions. FXStreet does not in any way guarantee that this information is free from mistakes, errors, or material misstatements. It also does not guarantee that this information is of a timely nature. Investing in Open Markets involves a great deal of risk, including the loss of all or a portion of your investment, as well as emotional distress. All risks, losses and costs associated with investing, including total loss of principal, are your responsibility. The views and opinions expressed in this article are those of the authors and do not necessarily reflect the official policy or position of FXStreet nor its advertisers.