Video | Business Headlines | Internet | Science | Scientific Ethics | Technology | Search

 

Adylkuzz Crytocurrency Miner Is Not the Next WannaCry

Symantec Security Response – Adylkuzz Crytocurrency Miner Is Not the Next WannaCry

Adylkuzz impact and prevalence is much lower than WannaCry

There have been reports of another threat, known as Adylkuzz, leveraging MS17-010 to propagate to vulnerable machines. MS17-010 is the same vulnerability used by WannaCry to propagate across networks however this is where the similarity with Adylkuzz ends.

Symantec customers using IPS have been proactively protected against attempts to exploit MS17-010.

Cryptocurrency mining

The main purpose of Adylkuzz is to mine Monero, a crytocurrency similar to Bitcoin. Adylkuzz installs a known cryptocurrency miner called cpuminer on compromised machines. Adylkuzz performs its mining operations in the background therefore infected users are unlikely to notice its presence. However, mining operations are CPU intensive so having a miner running on your machine could lead to performance issues.

While a nuisance, Adylkuzz does not have the same impact on compromised machines as ransomware threats which could lead to data loss and wide scale disruption.

Propagation

Adylkuzz leverages MS17-010, also known as EternalBlue to compromise machines. Adylkuzz attackers scan the internet for vulnerable machines to install their malware. Unlike WannaCry, Adylkuzz does not have the ability to self-propagate. It was WannaCry’s ability to self-replicate that allowed it to spread very quickly within organisations.

Low prevalence

Due to the effectiveness of IPS in proactively blocking infections, Symantec is observing low infections of Adylkuzz. Symantec has blocked over 44 million attempts to exploit MS17-10 and observed fewer than 200 machines with Adylkuzz infections.

For more information or to speak to a Symantec spokesperson please contact Veronica Rojo at veronicar@botica.co.nzor visit the Symantec Security Response blog post available here.


© Scoop Media

 
 
 
 
 
Business Headlines | Sci-Tech Headlines

 

Rocket Lab: Launch Expected

Rocket Lab has delayed the roll out of the launch vehicle called Electron by one day, due to weather conditions. The planned launch attempt will now take place on Tuesday, May 23, 2017. More>>

ALSO:

Budget: Irrigate (Good Times, Come On!)

Additional grant funding of $26.7 million over the next three years plus a capital boost of $63 million towards irrigation investments in Budget 2017 will deliver economic and environmental benefits through better use of water... More>>

ALSO:

Silver Fern Farms: Proposal To Close Fairton Sheepmeat Plant

Silver Fern Farms has advised its people of the proposal to permanently close the site, and has discussed potential transfer options to its other sites in the region as part of the consultation process...
More>>

ALSO:

MPI: Myrtle Rust Appears In Taranaki

The nursery in Waitara (just north of New Plymouth) reported suspected myrtle rust symptoms on young plants to the Ministry’s 0800 number yesterday (Tuesday). More>>

ALSO: