Sophos: Insights into Cryptominer Attacks
SophosLabs has found the source of the recently discovered Cryptominer attacks on SQL database servers. According to the research results of SophosLabs, a small software start-up in Iran is the origin of the "MrbMiner attack". Numerous hints in the configuration, domain and IP address indicate that the attacker has little ambition to hide well. It is also obvious that the attackers use similar techniques as the MyKings, Lemon_Duck or Kingminer. Cryptojacking is more than just an annoying evil "At a time when multi-million dollar attacks are bringing organizations to their knees, there is a temptation to think of cryptojacking as an annoying evil rather than ...