Hi-Tech

Adylkuzz malware campaign could eclipse WannaCrypt

Adylkuzz malware campaign could eclipse WannaCrypt

"As disruptive as WannaCry has been to vulnerable organizations, more deadly attacks that don't announce their presence like the cryptocurrency miner Adylkuzz go undetected", Brian Vecci from Varonis said. It can target vulnerable computers without the owner having to click.

Two leaked NSA hacking tools that enabled the spread of a global ransomware attack have also been used by hackers to mine cryptocurrency for weeks, according to security experts who claim the scope of the infection could be "larger in scale" than WannaCry.

Last week's WannaCry ransomware attack hit thousands of computers worldwide; its largest impact being seen on the NHS where more than 40 healthcare institutions were impacted by the file-encrypting malware.

Researchers at security firm Proofpoint has said that the malware installs a currency "miner" in vulnerable computers and generates digital cash.

"It uses the hacking tools recently disclosed by the NSA and which have since been fixed by Microsoft in a more stealthy manner and for a different goal", said Godier.

Cyber security experts are warning a new computer virus, Adylkuzz, looks set to infect more computers than last week's WannaCry attack. Monero is an alternative to Bitcoin recently adopted by the AlphaBay darknet market to trade in drugs, stolen credit cards, and counterfeit goods.

The firm believes Adylkuzz has been on the loose since at least May 2, but due to its stealthy nature escaped detection.

Proofpoint outlined in a blog post that the symptoms of this attack include "loss of access to shared Windows resources and degradation of PC and server performance". Proofpoint warned people that if the attacks poisoned their PCs, it can still remain compromised even after installing the patches.




To catch WannaCry and study it, Proofpoint then laid out bait on the open Web-a sacrificial virtual machine that lacked the Microsoft patch. The addresses were banned today by the unnamed crypto pool that Adylkuzz is reporting to and receiving money from.

As the world reels from the WannaCry ransomware attack, it's now emerged that a second, potentially larger attack, is already under way.

The WannaCry and Adylkuzz attacks are unusually effective because they don't start with e-mail phishing campaigns, which rely on unwitting users to click on a bad link in a malicious e-mail, thus opening the door to malware, Kalember says.

Riccardo Spagni, CEO of Monero, said the makers of the currency can't stop Adylkuzz.

"It takes over your computer, but you probably don't notice anything other than that the system runs really slow", Kalember said. Bitcoin ledgers are public.

Figure 3 shows Adylkuzz mining Monero cryptocurrency, a process that can be more easily distributed across a botnet like that created here than in the case of Bitcoin, which now generally requires dedicated, high-performance machines.

Read: WannaCry Ransomware Attack: Hackers Raised $50,000 In Bitcoins, Now What?

This appears to be more unsafe than "WannaCrypt" as the victim doesn't come to know that they have been hacked, but, on the other side, "the good part is that the hacker here is not interested in the victim's personal data", he said.


  • Kasich: This Is Why I Didn't Endorse Trump

    Kasich: This Is Why I Didn't Endorse Trump

    Elected officials on both sides of the aisle have, to varying degrees, floated the idea of impeachment, arguing that Trump's alleged attempts to influence the FBI investigation into Michael Flynn crossed a "deeply troubling" line.
    Louis mayor wants Confederate monument removed

    Louis mayor wants Confederate monument removed

    Gary Carter, a Democrat, "especially after we were able to express to them the personal nature and the offensive nature of this". Joseph Bouie (D) said at a press conference Tuesday, May 16, surrounded by several members of the Black caucus.

    US, Europe discuss new laptop ban on flights

    If the USA ban on a laptop is to be actualized on European excursions, this could affect some US aircraft that handle the course. BAPA noted that lithium battery fires had already been mentioned in two crash investigation reports .
  • Google Home will soon be able to make voice calls

    Google Home will soon be able to make voice calls

    Many of Google's products are also vying against similar offerings from other tech conglomerates like Amazon and Microsoft. This feature is being sweetened with the general availability of Spotify's free tier on the Google Home device.
    Whistleblower Chelsea Manning released after seven years

    Whistleblower Chelsea Manning released after seven years

    But a military court acquitted her of the most serious charge, aiding the enemy, which could have sent her to prison for life. I was not allowed to sit down with my back against the wall", she said in a testimony past year .
    Donald Trump, James Comey

    Donald Trump, James Comey

    These developments go far beyond the previous erratic, impulsive behavior of a president unmoved by facts or conventional norms. Failure to do so would result in criminal charges against Comey. "Why is he not doing the same here?" he asked .
  • England's emergency units open 'as normal' again after cyber attack

    England's emergency units open 'as normal' again after cyber attack

    Microsoft's top lawyer is laying some of the blame at the feet of the US government. To decode the files, the hackers were asking for $300 in ransom.
    Jury acquits Tulsa cop in shooting of unarmed black man

    Jury acquits Tulsa cop in shooting of unarmed black man

    Tulsa has a long history of hard race relations dating back to a 1921 race riot that left about 300 black residents dead. Shelby's attorneys called police officers to testify who described past run-ins with an allegedly noncompliant Crutcher.
    US Treasury Issues New Sanctions Aimed At Iranian Missile Program

    US Treasury Issues New Sanctions Aimed At Iranian Missile Program

    The latest sanctions coincide with the release to Congress of a semi-annual report detailing Iran's human rights abuses . The United States, Britain, France, Germany, China and Russian Federation reached the nuclear accord with Iran in 2015.
  • REPUBLICAN Lawmakers Fight Over Who Floated Trump Impeachment First

    REPUBLICAN Lawmakers Fight Over Who Floated Trump Impeachment First

    It's striking how many congressional Republicans are concerned about President Donald Trump's behaviour of late. Tom McClintock, R-Calif., one of three California Republicans who have called for an independent probe.
    Bayern Munich take legal action against newspaper over Joshua Kimmich report

    Bayern Munich take legal action against newspaper over Joshua Kimmich report

    In addition, a Stuttgart newspaper had reported he will leave the club at the end of the season. We are completely convinced by him, including the coach.
    Google gets you info by pointing camera at it

    Google gets you info by pointing camera at it

    Wednesday's keynote takes place at an outdoor theater near the company's Mountain View, California, headquarters. Another big change to Google Home is the ability to make hands-free calls to the U.S. or Canada for free.