Security News > 2022 > November > New KmsdBot Malware Hijacking Systems for Mining Crypto and Launch DDoS Attacks
A newly discovered evasive malware leverages the Secure Shell cryptographic protocol to gain entry into targeted systems with the goal of mining cryptocurrency and carrying out distributed denial-of-service attacks.
Dubbed KmsdBot by the Akamai Security Intelligence Response Team, the Golang-based malware has been found targeting a variety of companies ranging from gaming to luxury car brands to security firms.
It's also equipped to control the mining process and update the malware.
Akamai said the first observed target of the malware was a gaming company named FiveM, a multiplayer mod for Grand Theft Auto V that allows players to access custom role-playing servers.
The DDoS attacks observed by the web infrastructure company include Layer 4 and Layer 7 attacks, wherein a flood of TCP, UDP, or HTTP GET requests are sent to overwhelm a target server's resources and hamper its ability to process and respond.
Nearly half of the analyzed samples of malicious mining software secretly mine Monero.
News URL
https://thehackernews.com/2022/11/new-kmsdbot-malware-hijacking-systems.html
Related news
- GitVenom attacks abuse hundreds of GitHub repos to steal crypto (source)
- GrassCall malware campaign drains crypto wallets via fake job interviews (source)
- Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese Organizations (source)
- New Eleven11bot botnet infects 86,000 devices for DDoS attacks (source)
- New MassJacker Malware Targets Piracy Users, Hijacking Cryptocurrency Transactions (source)
- Microsoft: New RAT malware used for crypto theft, reconnaissance (source)
- ⚡ THN Weekly Recap: GitHub Supply Chain Attack, AI Malware, BYOVD Tactics, and More (source)
- Chinese FamousSparrow hackers deploy upgraded malware in attacks (source)
- New Crocodilus malware steals Android users’ crypto wallet keys (source)
- North Korean hackers adopt ClickFix attacks to target crypto firms (source)