ISPs Targeted in Massive Info Stealing and Cryptomining Malware Campaign

Crypto hackers have set their sights on internet service providers (ISPs). According to a technical report from Splunk, a Cisco security and observability platform, a massive attack campaign involving addresses in Eastern Europe targeted over 4,000 addresses corresponding to ISPs in China and the West Coast of the U.S. through brute force efforts. “These IPs were targeted by using a masscan tool which allows operators to scan large numbers of IP addresses which can subsequently be probed for open ports and credential brute-force attacks,” the report specified. The campaign aimed to get access to these hosts for two main objectives: deploy info-stealing software, that scans clipboard contents and screenshots for cryptocurrency addresses and private keys, and install cryptocurrency mining malware that uses the hardware capabilities of the host to mine monero (XMR).

免责声明：本文章仅代表作者个人观点，不代表本平台的立场和观点。本文章仅供信息分享，不构成对任何人的任何投资建议。用户与作者之间的任何争议，与本平台无关。如网页中刊载的文章或图片涉及侵权，请提供相关的权利证明和身份证明发送邮件到support@aicoin.com，本平台相关工作人员将会进行核查。