Video | Agriculture | Confidence | Economy | Energy | Employment | Finance | Media | Property | RBNZ | Science | SOEs | Tax | Technology | Telecoms | Tourism | Transport | Search

 

Cryptojacking Worm Hits Enterprises in China

Symantec Threat Intelligence: Beapy – Cryptojacking Worm Hits Enterprises in China

Today, Symantec released new research on a cryptojacking campaign impacting enterprises. The campaign, dubbed Beapy, uses the EternalBlue exploit and stolen and hardcoded credentials to spread rapidly across networks—including patched machines—to collect credentials from infected computers.

Beapy is most heavily affecting enterprises in Asia, with more than 80 percent of its victims located in China, with other victims in South Korea, Japan, and Vietnam. It is a file-based coinminer that uses email as an initial infection vector – activity was first seen in Symantec telemetry in January 2019 and has increased since March.

File-based coinminers have an advantage over browser-based coinminers because they can mine cryptocurrency faster. The Monero cryptocurrency, the cryptocurrency most commonly mined during cryptojacking attacks, dropped in value by 90 percent in 2018, so it may make sense that miners that create cryptocurrency faster are now more popular with cyber criminals.

Figure 1. Comparing profitability of browser-based and file-based coin-mining botnets

While enterprises might think they don’t need to worry about cryptojacking as much as more disruptive threats such as ransomware, it could still have a major impact on the company’s operations.

Potential impacts of cryptojacking for businesses include:
• A slowdown in devices’ performance, potentially leading to employee frustration and a reduction in productivity
• Overheating batteries
• Devices becoming degraded and unusable, leading to higher IT costs
• Increased costs due to increased electricity usage, and for businesses operating in the cloud that are billed based on CPU usage

To read the full Threat Intelligence Report please go to https://www.symantec.com/blogs/threat-intelligence/beapy-cryptojacking-worm-china

ends



© Scoop Media

 
 
 
Business Headlines | Sci-Tech Headlines

 

Robertson Speech: Budget Sees Wider Debt Target

"New Zealand is well positioned to face this instability and uncertainty, but we are not immune from its impacts. Growth rates are set to be lower than we have seen in recent years..." More>>

ALSO:

Commerce Commission: Spark Warned Of Broadband Price Rise

The warning follows an investigation into representations Spark made on its website and in emails in August and September 2018, notifying in-contract customers receiving its copper-based broadband service of its decision to increase the price by $5 a month. More>>

Law Commission: Resist Rushing To New “Deepfake” Law

Artificial intelligence techniques can create massive volumes of fake audio, images and video that is incredibly convincing and near-impossible to detect... While it is tempting to respond with new law, the study finds that the long list of current legislation covering the issues may be sufficient. More>>

ALSO:

'Contrary To US Interests': US Lockout Sees Android Ditch Huawei

Effective May 16, 2019, the Bureau of Industry and Security (BIS) amended the Export Administration Regulations (EAR) by adding Huawei Technologies Co., Ltd. (Huawei) to the Entity List. More>>

ALSO: