StripedFly malware targets greater than 1,000,000 PCs, disguising as a crypto miner
Kaspersky unveils StripedFly, a stealthy malware posing as a crypto miner, compromising over 1,000,000 Home windows and Linux techniques globally since 2016.
For over half a decade, a harmful malware dubbed “StripedFly” has been lurking within the shadows, posing as a crypto mining software program. Main antivirus builders, Kaspersky reported that this duplicitous malware has compromised over 1,000,000 Home windows and Linux techniques worldwide since 2016.
Kaspersky’s cybersecurity crew initiated their investigation into StripedFly final 12 months. They had been tipped off by anomalies inside their antivirus software program, which modified sure features within the Home windows OS.
Kaspersky’s investigation
A hanging discovery throughout the investigation was StripedFly’s use of an EternalBlue variant. This exploit, initially developed by the US Nationwide Safety Company (NSA), turned notorious after it was illegally disclosed and subsequently employed within the 2017 WannaCry ransomware assaults that affected quite a few Home windows techniques globally.
StripedFly leverages its distinctive variant of EternalBlue to worm its method into unpatched Home windows techniques, from the place it could possibly traverse throughout a community to incorporate Linux machines. As soon as within the system, it’s able to amassing a variety of delicate data, together with login particulars and private information.
The origins of StripedFly stay a thriller. Although it makes use of the identical methods as EternalBlue, that exact code was solely made publicly obtainable in April 2017 by a gaggle referred to as the “Shadow Brokers.” Nonetheless, Kaspersky disclosed that the earliest detection of StripedFly dates again to April of 2016. Additionally, a model of this mysterious malware has appeared in a ransomware assault named ThunderCrypt.
Microsoft launched a patch for EternalBlue again in early 2017, which additionally works in opposition to StripedFly. Sadly, utilizing outdated home windows has been a fairly frequent consumer conduct through the years, which is why over 1,000,000 gadgets have been breached by StripedFly to date.
