rTorrent Vulnerability Leveraged in Campaign Spoofing RIAA and NYU User-Agents?

article / Mar 08, 2018 (MODIFIED: Apr 10, 2018)

by Andrey Shalnev

The same rTorrent XML-RPC function configuration error that was targeted to mine Monero in February was also targeted in January in a campaign apparently spoofing user-agents for RIAA and NYU.

rTorrent Client Exploited In The Wild To Deploy Monero Crypto-Miner

article / Feb 28, 2018 (MODIFIED: Apr 17, 2018)

by Andrey Shalnev

A previously undisclosed misconfiguration vulnerability in the rTorrent client is being exploited in the wild to mine Monero.

XMRig Miner Now Targeting Oracle WebLogic and Jenkins Servers to Mine Monero

blog / Feb 21, 2018 (MODIFIED: Apr 06, 2018)

by Andrey Shalnev

The same drop zone server used last week to mine Monero on compromised Jenkins automation servers is now being used in a new Monero mining campaign targeting Oracle Web Logic servers.

New Python-Based Crypto-Miner Botnet Flying Under the Radar

article / Jan 03, 2018 (MODIFIED: Mar 08, 2018)

by Maxim Zavodchik, Liron Segal, Aaron Brailsford

A new Python-based botnet that mines Monero spreads via SSH and leverages Pastebin to publish new C&C server addresses.

stay up to date

Get the latest application threat intelligence from F5 Labs.

There was an error signing up.
Thank you, your email address has been signed up.

Follow us on social media.