Revamped cryptominer strikes Asia through EternalBlue exploit
Credit:
F-Secure
The latest version of NRSMiner has been spotted in recent attacks across Asia which are compromising systems which have not been patched against the well-known EternalBlue exploit.
According to cybersecurity researchers from F-Secure, unpatched machines in Asia -- centered in Vietnam -- are being infected with the latest version of NRSMiner, malware designed to steal computing resources in order to mine for cryptocurrency.
Starting mid-November last year, the latest wave of attacks is also actively spreading across countries including China, Japan, and Ecuador. The new version of the malware relies on the EternalBlue exploit to spread through local networks.