CoinMiner Malware Uses EternalBlue to Force Infected PCs to Mine Cryptocurrency

Trend Micro researchers have reported that cyber criminals are now hijacking Windows PCs with a fileless malware that forces the computer to mine cryptocurrency.

The ‘CoinMiner’ malware exploits the EternalBlue flaw used by WannaCry and NotPetya. Microsoft has already released a patch for the vulnerability last March, but for computers that haven’t been updated, the malware will trigger a WMI script to download malware or mining software every three hours.

Trend Micro recommends that admins SMBv1 file-sharing protocol, and use the Microsoft tool that can trace WMI activity.     

Source: ZDNet

Post a Comment