Hackers Infect 50,000 MS-SQL and PHPMyAdmin Servers with Rootkit Malware

Posted by & filed under Security Alerts.

Cyber Security researchers at Guardicore Labs today published a detailed report on a widespread cryptojacking campaign attacking Windows MS-SQL and PHPMyAdmin servers worldwide. Dubbed Nansh0u, the malicious campaign is reportedly being carried out by an APT-style Chinese hacking group who has already infected nearly 50,000 servers and are installing a sophisticated kernel-mode rootkit on compromised systems to prevent… Read more »

MikroTik Routers Compromised in Cryptojacking Campaign

Posted by & filed under Security News.

Cybercrime Directorate (CD), INTERPOL, has identified a massive global cryptojacking campaign conducted by threat actor(s) that exploited a vulnerability in a particular brand of routers (namely, MikroTik). This campaign involved the injection of a mining script into the routers through the known vulnerability. The aforesaid was sometime facilitated with the use of malware. Based on… Read more »