Cryptocurrency mining malware has become self-aware (kinda)

A common form of cryptocurrency mining malware has evolved and is now able to switch off security services to continue mining without being detected. Security researchers at Palo Alto Networks’ Unit 42 discovered that the malware used by cryptojacking group “Rocke” is able to gain administrative privileges to Linux-based cloud servers and uninstall vital security programs. This means the malware can go on illicitly mining coins undetected. Typically, if a piece of malware were to uninstall cloud-based security services, the system admin would be alerted. However, as the cryptojacker’s malware followed the official uninstall procedures of the security services in…

This story continues at The Next Web

Be the first to comment

Leave a Reply

Your email address will not be published.