We have noticed you are using an ad blockerTo continue providing news and award winning journalism, we rely on advertising revenue.To continue reading, please turn off your ad blocker or whitelist us.Anthony Di Iorio, founder of Jaxx, tweeted news Dash was to be removed from Jaxx iOS and this immediately reverberated around the crypto community.Dash is known for providing an extra layer of privacy, which may be concerning Apple.There has also been news about the anonymity of Monero and its potential for dark web transactions and such like.
For a long time Bitcoin has been the de facto cryptocurrency of the darknet, where its pseudonymity can be made more obscure by mixing transactions using specially designed tumbling services.But the blockchain provides an immutable record so, as attempts by law enforcement to track transactions have evolved, and technology savvy analysis firms have emerged, users are looking for ways to improve their privacy.Monero uses ring signatures in clever ways to bulk together transaction inputs and outputs so that all possible spenders appear "equiprobable".A couple of weeks ago dark marketplace AlphaBay announced it would be integrating Monero and the price of the currency has since rocketed amid a flurry of interest.So it's just darknet services thus far, but I do expect this to increase as the buzz continues.The original CryptoLocker did not use Bitcoin, so people would have to go to a gas station or local shop and pay cash for what was essentially a sort of gift card with a scratch-off code and input that code to get their files back.
That this is happening comes as no surprise to the people who built the untraceable cryptocurrency Monero, but their goal from the start was always to create a safe and secure system of money.Monero hit the headlines towards the end of last month when its price began to spike following an announcement by leading darknet market AlphaBay that it would be integrating Monero on 1 September.Monero core developer Riccardo Spagni says it's not about specific use cases, but about creating a digital version of cash and enabling user privacy to the best extent possible.The Monero bull run was perhaps triggered by the news that anonymous email service SIGAINT decided to host a Monero node on Tor.A rather unkind parallel has been swirling around the community between the recent rise of Monero and the theft of $60m in Bitcoin from Hong Kong exchange Bitfinex."Apple has got to be somewhat responsible for what they allow on the App Store.
Cryptocurrency mining malware discovered targeting Seagate NAS hard drives A malware variant named Mal/Miner-C also known as PhotoMiner is infecting Internet-exposed Seagate Central Network Attached Storage NAS devices and using them to infect connected computers to mine for the Monero cryptocurrency.Miner-C, or PhotoMiner, appeared at the start of June 2016, when a report revealed how this malware was targeting FTP servers and spreading on its own to new machines thanks to worm-like features that attempted to brute-force other FTP servers using a list of default credentials.Steam Spy and the specter of game sales transparency The Ukrainian Sergey Galyonkin was living in Cyprus when he decided he wanted to know precisely how many video games had been sold on Steam that week.In contrast to the film, music and TV industries, for which an orbiting constellation of organizations such as Billboard and Nielsen track and release thorough performance data, video game companies remain notoriously coy about their sales figures.Sharp and bright, lacking consideration or mystery, randomness or error.Analog photography takes the sense of a moment and turns it into a tangible image.
If configured for remote access, the devices expose a writable FTP directory to the Internet that attackers can abuseThe Seagate Central network-attached storage device.Thousands of publicly accessible FTP servers, including many from Seagate network-attached storage devices, are being used by criminals to host cryptocurrency mining malware.Researchers from security vendor Sophos made the discovery when they investigated a malicious program dubbed Mal/Miner-C, which infects Windows computers and hijacks their CPUs and GPUs to generate Monero, a bitcoin-inspired cryptocurrency.With most cryptocurrencies, users can generate new units by devoting their computing resources to solving complex math problems needed to validate transactions in the network.Bitcoin mining malware used to be widespread some years ago, but as the cryptocurrency s network grew, mining became more difficult and using personal computers, which have limited computing resources, stopped being profitable.
Seagate's Central NAS boxes have proven particularly susceptible to the Miner-C malware, with Sophos claiming over 70 per cent of all internet-connected units have been infected.Seagate's small and home office SOHO network attached storage NAS products are under attack by a cryptocurrency-mining malware dubbed Miner-C, with claims from researchers that over 70 per cent of all Seagate Central NAS devices accessible from the internet have been infected.According to a report PDF warning published by anti-virus specialist Sophos, the Miner-C malware doesn't actively target Seagate's Central range of NAS devices; rather, a security flaw in the Seagate Central devices makes them susceptible to attack to the point where more than 70 per cent of Seagate Central NAS devices accessible from the internet have Miner-C infections present.The flaw, Sophos claims, comes from the fact that it is impossible to delete the public share and account from the device coupled with the fact that activating remote access - a common usage scenario for a NAS box on a small office or home network - does so for all users including the anonymous public account.The malware looks for this publicly-accessible share and writes copies of itself therein, disguised to look like a traditional Windows folder.The malware doesn't actively run on the NAS itself; rather it sits in the share waiting for someone to accidentally execute what they believe to be a folder, then infects the Windows machine from which the NAS was accessed in order to mine the Monero cryptocurrency.
Attackers are draining the CPU and power resources of more than 5,000 file transfer protocol servers by infecting them with malware that surreptitiously mints the relatively new crypto currency called Monero, researchers said.A notable percentage of the 5,137 infected servers are powered by Seagate Central, a network-attached storage device that allows users to remotely retrieve files using FTP connections, according to a report published Friday by researchers from antivirus provider Sophos.The Seagate device contains a weakness that allows attackers to upload malicious files to any device that has been configured to allow remote file access, the report said.Once users inadvertently click on the malicious files, their systems are infected with Mal/Miner-C, the malware that mines the Monero coins.Sophos Senior Threat Researcher Attila Marosi estimated that Mal/Miner-C has already mined Monero coins valued at 76,599 Euros about $88,347 and has the ability to earn about $481 each day.While new crypto coins sold on the open market don't always fetch their entire estimated value, the earnings are nonetheless significant, since virtually all the hardware and electricity costs are borne by the people hosting the infected servers.
Seagate Technology headquarters in Cupertino, CaliforniaWe have noticed you are using an ad blockerTo continue providing news and award winning journalism, we rely on advertising revenue.To continue reading, please turn off your ad blocker or whitelist us.Thousands of Seagate Central network-attached storage NAS devices have been found hosting cryptocurrency mining malware called Miner-C which turns them into repositories to infect other devices.According to researchers at Sophos, the malicious software, which was first identified in June quietly infects victims' computers and allows a hacker to covertly mine a cryptocurrency called Monero.
Audacious cybercriminals have created an Star Trek-themed strain of ransomware.Hat-tip to Bleeping Computer, which broke the story on the "Kirk" malware, discovered yesterday by Avast malware researcher Jakub Kroustek.The software disguises itself as the notorious Low Orbit Ion Cannon (LOIC) denial of service tool, a utility beloved by Anonymous hacktivists back in the day before everyone realised it revealed IP addresses of users.Kirk is reckoned to be the first ransomware to utilise Monero rather than BitCoin as the ransom payment of choice.The malware decryptor "Spock" will be supplied to the victim once the payment is made, but at this time the ransomware does not look like it can be decrypted, anti-malware firm Webroot reports.Right now there are no known victims of the ransomware and there’s no sample of the decryptor, so information regarding it is limited.
p On Friday, Ransomware called WannaCry used leaked hacking tools stolen from the National Security Agency to attack an estimated 200,000 computers in 150 countries.On Monday, researchers said the same weapons-grade attack kit was used in a much earlier and possibly larger-scale hack that made infected computers part of a botnet that mined cryptocurrency.Like WannaCry, this earlier, previously unknown attack used an exploit codenamed EternalBlue and a backdoor called DoublePulsar, both of which were NSA-developed hacking tools leaked in mid April by a group calling itself Shadow Brokers.Kafeine, a well-known researcher at security firm Proofpoint, said the attack started no later than May 2 and may have begun as early as April 24.He said the campaign was surprisingly effective at compromising Internet-connected computers that have yet to install updates Microsoft released in early March to patch the critical vulnerabilities in the Windows implementation of the Server Message Block protocol.In a blog post published Monday afternoon Kafeine wrote:
p Adylkuzz predates ransomware by at least a week – and pays better tooThe now infamous Windows vulnerability (MS17-010) exploited by the WannaCrypt ransomware has also been abused to spread another type of malware, specifically a cryptocurrency miner.The Adylkuzz campaign predates WannaCry by severals day and may even have limited the spread of last week’s WannaCry infection, according to security firm Proofpoint."Initial statistics suggest that this attack may be larger in scale than WannaCry[pt], because this attack shuts down SMB networking to prevent further infections with other malware (including the WannaCry[pt] worm) via that same vulnerability," according to Proofpoint.Targeted machines are used to mine for the Monero cryptocurrency.Monero is an alternative to Bitcoin recently adopted by the AlphaBay darknet market to trade in drugs, stolen credit cards, and counterfeit goods.
p Two leaked NSA hacking tools that enabled the spread of a global ransomware attack have also been used by hackers to mine cryptocurrency for weeks, according to security experts who claim the scope of the infection could be "larger in scale" than WannaCry.On 15 May, researchers from US cybersecurity firm Proofpoint released evidence that "EternalBlue" and "DoublePulsar" – two US cyberweapons – were helping to spread a "large-scale attack" that installed a strain of Monero mining software called "Adylkuzz".As reported, victims of the cyber attack included telecommunications giant Telefonica and the UK health service.Proofpoint, as described in a blog post by cybersecurity researcher 'Kafeine', said analysis suggests the scale of the attacks – which potentially date back as early as 24 April – may be more widespread than WannaCry, earning the hackers tens of thousands of dollars.Kafeine suggested the existence of the Adylkuzz miner may have actually "limited the spread" of the notorious ransomware worm because it shuts down SMB networking (the specific Microsoft system being exploited) to prevent infection from other malware.The cyberattack is reportedly launched from private servers which are actively scanning the web for potential targets.
p The WannaCry ransomware hit the world in a frenzy, but the next wave of hacks using the same tactics is much quieter.Instead of serving ransomware and locking up computers while demanding victims pay up, Adylkuzz turns devices into slaves for its botnet army.Hundreds of thousands of infected computers are effectively turned into zombies mining for Monero, a cryptocurrency similar to Bitcoin, according to cybersecurity researchers at Proofpoint.It spreads through EternalBlue, the same server messaging blocking exploit that WannaCry used -- a vulnerability first discovered by the US National Security Agency and leaked to the public by the hacker group Shadow Brokers.Once Adylkuzz is in a computer's system, it downloads instructions, a cryptominer and cleanup tools.Proofpoint has spotted attacks as early as April 24, but because of Adylkuzz's stealthy nature, it wasn't as obvious until after WannaCry's devastating ransomware surfaced.
Also starts mysterious VIP service for $130,000The Shadow Brokers is once again trying to sell yet more stolen NSA cyber-weapons, raising the asking price in the process.And the gang has threatened to out one of the US spy agency's ex-operatives that it claims hacked Chinese targets.In the now-traditional broken English statement, the smug miscreants said they had so many punters throwing money at them for their June exploit sale that they are jacking up their prices.If you want to get hold of the forthcoming July batch, it'll set you back 200 ZEC (Zcash) ($65,000) or 1,000 XMR (Monero) ($46,000), which is a rather bizarre pricing policy and double the amount the crew were charging before.What's also slightly bizarre is that there has been, seemingly, zero fallout from that sale last month, and no evidence anyone paid up or got any code.
A bunch of cypherpunks were going to topple the monetary system from a subreddit and everything would be all sunshine and rainbows?The main thing that happened is that these idealistic cypherpunks met cold capitalism in the form of well funded, hyper-organized cartels that weren’t interested in the culture behind the cryptocurrency movement, but just cold dead profit.Satoshi Nakamoto had accounted for a lot, but Ukrainian botnets of involuntarily mining computers probably weren’t on his radar when he wrote his manifesto in 2008.Even though cryptocurrencies have lost some of their innocence, there is still a lot to love.Altcoins like Ether, Litecoin, Ripple, Zcash and Monero each have their own special character and strength.And even though the pioneers of the cryptocurrency market still prefer Bitcoin or the classic Ether, everyone with some playing money can find a cryptocoin that’s right for him to invest in.
Why is the art world getting excited about digital currency Bitcoin and its underlying technology blockchain?In a first for the tradition-bound art world of Cork Street, her international clientele will have the opportunity to pay using Bitcoin, the digital cryptocurrency underpinned by blockchain technology.The gallery will also accept other cryptocurrencies such as Ethereum, Ethereum Classic, Dash, Litecoin, and soon, Monero, she says.Once the network has reached a consensus that a transaction has happened, the ledger is updated and cannot be tampered with."Blockchain is a borderless, open source, decentralised peer-to-peer network that governments cannot shut down," she says.And the fact that there is no centralised body - like a bank head office, for example - makes cryptocurrencies safer, she argues, despite their reputation for being volatile, high-risk and the favourite "store of value" for criminals and hackers.
Investigators are following the trail of the WannaCry attackers’ Bitcoin ransom, with one digital currency asset change service confirming they were used to convert the nefarious funds.The notorious ransomeware took advantage of security loopholes in older versions of Windows to seize control of users’ systems, locking up their files until they coughed up $300 or more.That cash, amounting to more than 50 BTC, had been sitting in digital wallets until earlier this week.In total, around $143,000 worth of Bitcoins had been amassed, across three wallets known to be used by the WannaCry attackers.On Wednesday evening, the funds from those wallets began to be withdrawn, and several hours later all 52.2 BTC was gone.That alternative, Monero, was created in 2014 and has a particular focus on privacy.
When the master or masters of the WannaCry cryptoransomware worm emptied the bitcoin wallets associated with the malware earlier this week, they apparently did so to make future movement of the funds more anonymous.According to researchers at the Italian information security firm Neutrino, the bitcoin were exchanged for XMR, the "untraceable" private digital currency backed by Monero.On Wednesday, the 52.2 bitcoins in the wallet were drained out over nine transactions, as detected by a bot created by Quartz's Keith Collins.Neutrino researchers traced the moved bitcoins to wallets associated with Monero.Monero is a private digital currency that is focused on anonymity.While it is based on blockchain like other cryptocurrencies and uses distributed consensus for all transactions to prevent wallet hacking, it uses "ring signatures"—an anonymous cryptographic signature scheme—to sign transactions.
The Shadow Brokers, the mysterious hacker group that leaked troves of NSA hacking tools, has reportedly made nearly $90,000 (£69,200) from their monthly data dumps.The hackers reportedly made around $88,000 between July and August in Monero.The group also raked in around $35,000 in bitcoins before they stopped accepting it.A security researcher going by the pseudonym wh1sks claimed to have identified several of the Shadow Brokers' clients, Motherboard reported.The researcher wrote in a blog that despite Shadow Brokers having "gone dark" on Twitter and Steemit, "it looks like people are still paying them for NSA malware."However, the researcher also noted that it's "plausible" that the Shadow Brokers "just sent themselves" some Monero "to make it appear as if they're getting sales."
A notorious computer exploit allegedly leaked from the US National Security Agency (NSA) is being used to boost the spread of a new cryptocurrency-generating malware dubbed "CoinMiner", according to experts at Japanese security firm Trend Micro.The threat exploits a component in PCs known as "Windows Management Instrumentation" (WMI) and enters computers with an alleged NSA tool called EternalBlue – previously used by hackers to help spread the "WannaCry" ransomware across the world earlier this year.The ultimate aim of the so-called "fileless malware" is to enslave a victim's machine and use its computing power to generate bitcoin, a form of digital cash.The hackers' servers are still being updated, meaning the attack remains active at the time of writing.To date, the campaign has been observed in countries including Japan, Indonesia, Taiwan, Thailand and India."The combination of fileless WMI scripts and EternalBlue makes this threat extremely stealthy and persistent," wrote Trend Micro researcher Buddy Tancio in a blog post this week (21 August).
More

Top