New Cryptojacking Malware Breakdown

New Cryptojacking Malware Breakdown

New Cryptojacking Malware Breakdown - The GhostEngine cryptocurrency mining malware disables endpoint security protections, deletes logs, modifies the kernel, and digs-in to establish persistence.

It all begins with getting the victim machine to launch one .exe file.

Cryptojacking malware consumes the compute resources of the victim by running cryptocurrency mining software which then directs any cryptocurrency rewards to accounts that only the attackers can access. 

It is basically resource theft that impacts systems performance, but because of the access it has, it can also be used as a vehicle for further attacks and to deploy more damaging instructions.  It also undermines the protections of the system, which makes it more vulnerable to other attackers!


 
A good writeup: https://arstechnica.com/security/2024/05/researchers-spot-cryptojacking-attack-that-disables-endpoint-protections/

E-mail me when people leave their comments –

CISO and Cybersecurity Strategist

You need to be a member of CISO Platform to add comments!

Join CISO Platform

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Join CISO Community Share Your Knowledge (Post A Blog)
 

 

 

CISO Platform: CISO 100 Awards & Future CISO Awards, USA 2025

  • Description:

     

    Nominate for the CISOPlatform CISO 100 Awards & Future CISO Awards - Recognizing Cybersecurity Leaders. We're reaching out to you because we believe you know someone deserving of this prestigious accolade....Nominate your colleague, mentor, someone you admire or yourself !

    For more details: Click Here

    Nominate Yourself (Last Date 15th Feb 2025): …

  • Created by: Biswajit Banerjee