Hackers tried to launch virus mining on a blogging platform
Hackers use organizations’ servers for hidden mining
Scammers are trying to steal personal data of users
Ghost blogging platform has been hacked. About this the company’s management said in an official press release. Scammers tried to install mining virus and use Ghost servers for mining cryptocurrencies.
As admitted in company Ghost, hackers exploited platform vulnerability CVE-2020-11651 and CVE-2020-11652 in the Saltstack wizard. Saltstack is open source software used by centers data processing and cloud servers. Ghost stated, that the incident came to light when hackers tried to break into him processors and systems. As stated in the official press release, the incident occurred on May 3, 2020 of the year, at 03:24 BST when the company updated his status check page and noticed an abnormal activity. In the same time the server reported a service failure. At 10:15 BST on the same day, Ghost reported the incident and a hotfix was released to restore its servers.
“Today we introduced several new firewalls and security measures, which, unfortunately cause instability in our networks and affect some customer sites. We have restored all services and everything should work as usual. We are still investigating the root cause of the problem, “Ghost said in a statement. .
It became known that the attack affected both Ghost (Pro) sites and Ghost.org billing services. The company explained that there is no evidence Togo, that personal data of customers, passwords, as well as data of credit and bank cards, were obtained by intruders.
“We continue to closely monitor all systems, and also we work carefully over cycle of all sessions. Our advanced firewall configurations now work as expected. All connection problems have been resolved and customer sites are loaded as usual again, ”the statement said..
Hackers hunt victims’ servers
Recall that this is not the first hacker attack associated with the launch of a miner virus.. Previously BeInCrypto reported that fraudsters are using government servers to conduct underground cryptocurrency mining. Per some years in Russia to the criminal responsibility for infecting computers with a mining virus were attracted Total two human. One the incident was registered in Novgorod areas, where a local man infected an entire network of computers in several regions Of Russia mining virus. The second case was identified in the Rostov region. Employee “Rostovvodokanal»Uploaded a hidden mining virus to the organization’s website. As a result, the malware got into almost all computers of the water utility workers.
However, modern anti-virus technologies make it possible to quickly identify malware and its creator. According to Denis Parinov, security analyst at Kaspersky Lab, in 2019 there was a decrease numbers computers infected with hidden mining virus, from 5,638,828 machines to 2,259,038 machines, or 59%. Topics however, viruses such as Trojan.Script.Miner.gen, Trojan.BAT.Miner.gen and Trojan.JS.Miner.m are still among the top twenty most dangerous programs for hidden mining. They are significantly reduce the productivity of the computer, may quickly transfer from an infected device to other gadgets, and also increase energy consumption.
When this Denis Parinov noted that hackers Now prefer to run the miner virus not on private computers users, and on the equipment of corporations and government agencies.
All information, contained in our website, published on principles good faith and objectivity, and exclusively with familiarization aim. Reader by yourself bears full responsibility for any actions, committed im on based on information, received on our website.