Tag: cryptomining
11 articles

Cloud Worm CAI Disrupts Rivals, Steals Secrets and Mines Crypto
Meet CAI, a malicious botnet that's disrupting rival operations, swiping sensitive secrets, and mining cryptocurrency - all while eliminating competing malware to maintain its grip on compromised targets. This centralized worm is a powerhouse of credential theft and cryptomining, making it a force to be reckoned with.

Cybercrime Gang Targets Fans with Miner Malware via Pirated Media Sites
Millions of fans are unwittingly getting hacked when they visit popular pirated media sites, with a staggering 40 million visits to infected sites in April alone. A sneaky malware campaign is using fake video player updates to infect devices with cryptomining and remote-access malware.

Hackers exploit Qinglong flaws for cryptomining deployments
Hackers are taking advantage of two major flaws in the Qinglong open-source task scheduler, CVE-2026-3965 and CVE-2026-4047, which can be combined to gain remote control of vulnerable systems. These authentication-bypass vulnerabilities affect Qinglong versions 2.20.1 and older, and have been exploited for cryptomining deployments.

Fake ISO Installers Spread RATs, Crypto Miners in Global Campaign
Beware of fake ISO installers that masquerade as legitimate software, but secretly unleash a malicious payload of RATs, crypto miners, and CPA fraud on unsuspecting victims. For over two years, a financially motivated operation, codenamed REF1695, has been quietly spreading malware through these Trojan horses.

AI Exclusive: Dangerous Vibe-Code Malware Surge
Playful vibe coding—quick, AI-assisted tinkering—has slid into the criminal underground, letting amateurs spin up adaptive ransomware, cryptominers and hyper-personalized phishing at speed. The result is a weird mix of sloppy charm and real danger as generative tools turn into a malware force‑multiplier.

3,000 YouTube Videos Exposed: Exclusive Malicious Network
Imagine the how‑to video you trust quietly installing a trojan — researchers have uncovered a malicious network behind 3,000+ YouTube uploads that lure viewers to downloads which deploy credential stealers, cryptominers and remote‑access trojans. By posing as tutorials and fixes and using lightweight loaders, this scalable scheme turns platform trust into a repeatable infection machine.

npm packages Must-Have Defense Against Risky Attacks
Attackers briefly pushed trojanized npm releases that spread fast through the cloud, mined only pennies, and left security teams scrambling to contain and remediate. It’s a wake‑up call: package convenience comes with real supply‑chain risk, so tighten controls, pin dependencies, and treat dependencies as first‑class security assets.

USB-borne campaign: Critical, Risky Cryptominer Threat
A new global USB-borne campaign turns everyday thumb drives into stealthy cryptomining engines by chaining DLL hijacking with PowerShell — quietly draining CPU/GPU power and sidestepping network defenses. Treat unknown USBs as hostile: disable autorun, use scanned maintenance drives, and harden endpoints to block this low‑tech delivery of high‑tech abuse.

AI-generated ransomware: Exclusive Dangerous Threat
The discovery of AI-generated Lcryx ransomware hidden in a long-running cryptomining botnet shows attackers are marrying covert resource theft with adaptive extortion—pushing organizations and individuals to rethink defenses as malware becomes faster, smarter, and harder to stop.

AI-Generated Ransomware: Critical, Dangerous Alert
AI-generated ransomware is reshaping cybercrime—combining adaptive, stealthy malware with cryptomining botnets to create faster, more profitable attacks. Learn why this shift matters and what practical steps organizations and users can take now to reduce risk.

New Method Discovered to Halt Cryptominer Campaigns with Bad Shares and XMRogue
New method unveiled to combat cryptominer campaigns using bad shares and XMRogue, enhancing security and efficiency in crypto mining operations.