Cybercriminals Sneak in Crypto Mining Malware via Confluence Software Exploit

Cybercriminals are exploiting a known vulnerability in the software Confluence to mine XMR.

Cybercriminals are now reportedly exploiting known vulnerability CVE-2019-3396 in the software Confluence, a workspace productivity tool made by Atlassian, according to a report by security intelligence firm Trend Micro Inc. on May 7.

The exploit that has been developed allows cybercriminals to stealthily install and run a monero (XMR) miner on a vulnerable computer, as well as covering up the mining activity by using a rootkit to hide the malware’s network activity and toll on the host’s central processing unit (CPU).

According to an Atlassian security advisory, the vulnerability in question only applies to some older versions of Confluence. The vulnerability can be avoided by downloading patched versions of Confluence Server and Data Center.

In February, as previously reported by Cointelegraph, Trend Micro covered another instance of XMR miner malware attacks. This attack targeted Microsoft Windows users with the Windows exploit tool mimikatz and remote control program Radmin. The vulnerability targeted was Windows SMB Server Vulnerability MS17-010, which has since been patched in 2017.

Crypto mining attacks are purportedly on the rise, according to a statement by AT&T Cybersecurity in March. Per the report, online shopping giant Amazon has also been the victim of a monero miner attack. In this case, the attack was executed on a Kubernetes server operating inside Amazon Web Services.

Original Article

COMMENTS

By Readers$type=blogging$cate=2$count=6

Name

Analysis,498,News,2975,Press Releases,338,Sponsored,137,
ltr
item
CryptoNomus: Cybercriminals Sneak in Crypto Mining Malware via Confluence Software Exploit
Cybercriminals Sneak in Crypto Mining Malware via Confluence Software Exploit
https://images.cointelegraph.com/images/528_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS9zdG9yYWdlL3VwbG9hZHMvdmlldy8xODFmZDA0MDJlNGFhMWFjOWYzNzQzYWM3MjBlOWU5My5qcGc=.jpg
CryptoNomus
https://www.cryptonom.us/2019/05/cybercriminals-sneak-in-crypto-mining.html
https://www.cryptonom.us/
https://www.cryptonom.us/
https://www.cryptonom.us/2019/05/cybercriminals-sneak-in-crypto-mining.html
true
4884201149675661183
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share. STEP 2: Click the link you shared to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy