Sign In

Communications of the ACM

ACM TechNews

Microsoft Warns Over Unusual Malware That Targets Windows, Linux


View as: Print Mobile App Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook
A LemonDuck logo.

Microsoft is warning customers about LemonDuck crypto-mining malware targeting both Windows and Linux systems.

Credit: linuxiac.com

Microsoft security researchers have warned customers about the LemonDuck crypto-mining malware that attacks Windows and Linux systems, and is spreading via phishing emails, Universal Serial Bus devices, and brute force attacks, and through on-premise Exchange Server bugs.

The group behind the malware was using Exchange vulnerabilities exposed in March to mine for cryptocurrency in May, two years after its emergence.

The Microsoft 365 Defender Threat Intelligence Team said, "[LemonDuck] continues to use older vulnerabilities, which benefit the attackers at times when focus shifts to patching a popular vulnerability rather than investigating compromise. Notably, LemonDuck removes other attackers from a compromised device by getting rid of competing malware and preventing any new infections by patching the same vulnerabilities it used to gain access."

From ZDNet
View Full Article

 

Abstracts Copyright © 2021 SmithBucklin, Washington, DC, USA


 

No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account