Coinhive Malware Affects 200K MikroTik Router Users
Coinhive Malware Affects 200K MikroTik Router Users August 7, 2018 August 7, 2018 Kelly Cromley http://1AZFjzw2#Nwf63pYaMWq#xIY
NewsAugust 7, 2018 by Kelly Cromley

Coinhive Malware Affects 200K MikroTik Router Users

Security analysts as of late identified a sequence of cryptomining intrusions, which at first invaded countless number of users in Brazil to establish a mushrooming mining botnet by injecting insecure devices with malware.

As indicated by reports, the gadgets targeted for the intrusions were MikroTik switches which had an obsolete programming patch. In April 2018, the organization fixed a remote contact vulnerability, which enabled hackers to obtain unauthenticated control over MikroTik switches.

Back then, a proof-of-concept detailing how the vulnerability can be exploited to access the MikroTik devices was released by security analysts who studied the patch. The hackers had used the information to inject the routers with malware that deploys the Coinhive browser-based cryptocurrency mining software.

The deployment begins when users access the World Wide Web through the MikroTik proxy after encountering a HTTP error. The web pages accessed by users are injected with Coinhive’s Javascript. The users’ system is then used to mine Monero without their knowledge.

Cryptojacking – a global threat

So far, researchers have identified at least three cryptojacking incidents. As many as 183,700 users of MikroTik routers were affected in Brazil.

The other two attacks involving MikroTik routers affected 16,000 and 25,000 users respectively. Most of the affected users were residents of Moldova. The incident was discovered by another researcher.

The identified incidents signaled that the cryptojacking plot is not restricted to a particular geographical region. This is a cause of worry to analysts and researchers across the globe. There has been a drastic rise in cryptojacking cases in the past few years. Cryptojacking is turning out to be one of the dominant cybersecurity threats around the world. Even Linux based systems, which are traditionally considered to be safe, are unable to escape from the mining malware.

Analysts have advised users of MikroTik device to apply the patch and reset their passwords.

Contact Me

AuthorKelly Cromley

Kelly is our in house crytpto researcher, delving into the stories which matter from blockchains being used in the real world to new ico coming out.

Related News Articles

Mojiolaoluwa Seun Salisu Leading Africa’s Fintech Revolution with Web3 Ecosystem

Mojiolaoluwa Seun Salisu Leading Africa’s Fintech Revolution with Web3 Ecosystem

July 9, 2023 by Kelly Cromley
US, EU Investors Can Now Own Stake In DASH Masternodes

US, EU Investors Can Now Own Stake In DASH Masternodes

April 19, 2018 by Petar Markoski
Study Shows Bitcoin Prices Being Influenced By Social Media

Study Shows Bitcoin Prices Being Influenced By Social Media

June 27, 2018 by Kate Leaman
Decentralized Crypto Exchange Dolomite to Introduce Margin Trading with SL Orders

Decentralized Crypto Exchange Dolomite to Introduce Margin Trading with SL Orders

November 3, 2019 by Kelly Cromley