Business Daily Media

The Times Real Estate

.

Cloud Systems Are the New Battleground for Crypto Mining Threat Actors

Trend Micro report warns of growing attack surface for CPU-mining

HONG KONG SAR - Media OutReach - 30 March 2022 - Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, today announced a new report revealing a fierce, hour-by-hour battle for resources among malicious cryptocurrency mining groups.

To read the "A Floating Battleground Navigating the Landscape of Cloud-Based Cryptocurrency Mining" report: https://www.trendmicro.com/vinfo/hk/security/news/cybercrime-and-digital-threats/probing-the-activities-of-cloud-based-cryptocurrency-mining-groups

"Just a few hours of compromise could result in profits for the perpetrators. That's why we're seeing a continuous fight for cloud CPU resources. It's akin to a real-life capture-the-flag, with the victim's cloud infrastructure the battleground," said Stephen Hilt, Senior Threat Researcher at Trend Micro. "Threats like this need joined-up, platform-based security to ensure the bad guys have nowhere to hide. The right platform will help teams map their attack surface, assess risk, and apply for the right protection without adding excessive overheads."

Threat actors are increasingly scanning for and exploiting these exposed instances, as well as brute-forcing SecureShell (SSH) credentials, in order to compromise cloud assets for cryptocurrency mining, the report reveals. Targets are often characterized by having outdated cloud software in the cloud environment, poor cloud security hygiene, or inadequate knowledge on how to secure cloud services and thus easily exploited by threat actors to gain access to the systems.

Cloud computing investments have surged during the pandemic. But the ease with which new assets can be deployed has also left many cloud instances online for longer than needed—unpatched and misconfigured.

On one hand, this extra computing workload threatens to slow key user-facing services for victim organizations, as well as increasing operating costs by up to 600% for every infected system.

Crypto mining can also be a precursor to more serious compromise. Many mature threat actors deploy mining software to generate additional revenue before online buyers purchase access for ransomware, data theft, and more.

The Trend Micro report details the activity of multiple threat actor groups in this space, including:

Outlaw, which compromises IoT devices and Linux cloud servers by exploiting known vulnerabilities or performing brute-force SSH attacks.

TeamTNT, which exploits vulnerable software to compromise hosts before stealing credentials for other services to help it move around to new hosts and abuse any misconfigured services.

Kinsing, which sets up an XMRig kit for mining Monero and kicks any other miners off a victim system.

8220, which has been observed fighting Kinsing over the same resources. They frequently eject each other from a host and then install their own cryptocurrency miners.

Kek Security, which has been associated with IoT malware and running botnet services.

To mitigate the threat from cryptocurrency mining attacks in the cloud, Trend Micro recommends organizations to:

  • Ensure systems are up-to-date and running only the required services
  • Deploy firewall, IDS/IPS, and cloud endpoint security to limit and filter network traffic to and from known bad hosts
  • Eliminate configuration errors via Cloud Security Posture Management tools
  • Monitor traffic to and from cloud instances and filter out domains associated with known mining pools
  • Deploy rules that monitor open ports, changes to DNS routing, and utilization of CPU resources from a cost perspective

About Trend Micro

Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, global threat research, and continuous innovation, Trend Micro's cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints. As a leader in cloud and enterprise cybersecurity, the platform delivers a powerful range of advanced threat defense techniques optimized for environments like AWS, Microsoft, and Google, and central visibility for better, faster detection and response. With 7,000 employees across 65 countries, Trend Micro enables organizations to simplify and secure their connected world.

#TrendMicro

News from Asia

Zeagoo Europe Launches Limited-Time 30% Off Spring/Summer Event

BERLIN, GERMANY - Media OutReach Newswire - 25 March 2025 - Zeagoo Europe is set to launch its highly anticipated Spring/Summer 2025 promotion, running from March 25 to March 31, under the theme “...

Great World Residences unveils new name and brand identity

SINGAPORE - Media OutReach Neswire - 26 March 2025 - Great World Residences, formerly known as Great World Serviced Apartments, proudly announces its new name and refreshed brand identity, marking...

Presented by K11 Art Foundation, Philip Colbert’s monumental sculpture THE LOBSTER PAINTER – a collaboration with Co-Museum – along with five other works create an immersive city takeover

The sculptures are now available for public viewing at various locations across K11 MUSEA and add a bold, interactive dimension to Hong Kong’s city-wide celebration of the arts From 26 March to 13 ...

Coca-Cola in Hong Kong become Founding Partner of Kai Tak Sports Park

Bringing People Together and Elevating Refreshing Moments in Hong Kong’s Home Venue HONG KONG SAR - Media OutReach Newswire - 26 March 2025 - Coca-Cola in Hong Kong, represented by The Coca-Cola C...

FBS Supports 250 Children in Indonesia During Ramadan

JAKARTA, INDONESIA - Media OutReach Neswire - 26 March 2025 - FBS, a leading global broker, continues its commitment to social responsibility with a $10 000 donation to the Peduli Anak Foundation...

ESG Achievement Awards 2024/2025 is Open for Applications, Honouring Technology-Driven Sustainability and Innovation

HONG KONG SAR - Media OutReach Newswire - 26 March 2025 - The Institute of ESG & Benchmark (IESGB) is proud to announce the launch of the fifth edition of the ESG Achievement Awards 2024/2025...

Experience the Rich Fishing Heritage of Hong Kong with "Aberdeen 1773"

HONG KONG SAR - Media OutReach Newswire - 26 March 2025 - Hong Kong Fisherman's Wharf is excited to introduce the "Aberdeen 1773 Fishing Heritage Tour", a cultural experience that brings the rich ...

Insulation Material Y-Warm: A New Era of Thin and Light Winter Apparels

BEIJING, CHINA - Media OutReach Newswire - 26 March 2025 - Even after over a hundred years of application of thermal insulation materials in construction and other industry, this application in te...

Case Study Highlights INDIBA 448 kHz Radiofrequency’s Role in Visceral Fat Reduction and Prevention of Fat Accumulation

SINGAPORE - Media OutReach Newswire - 26 March 2025 - A revolutionary case study and scientific research have revealed that INDIBA 448 kHz monopolar radiofrequency technology offers a highly effe...

Galaxy Macau™ and SCMP Learn Team Up to Inspire New Educational Pathways at Pioneering Parents’ Talk Held at GICC

Leading Education Experts Gather to Shape Conversations Around Global Education for the Next Generation MACAU SAR - Media OutReach Newswire - 26 March 2025 - Galaxy Macau™, in collaboration with ...

Samsara Eco expands global leadership team

Industry heavyweights join Samsara Eco to accelerate its enzymatic recycling technology Chief Innovation Officer and Executive Product Director a...

National Print Awards Announce Ricoh Women in Industry Award

The National Print Awards (NPAs) are proud to introduce the Ricoh Women in Industry Award, a prestigious new accolade recognising and celebrating ...

Financial Forecasting: 3 Tips for SMEs

Financial forecasting means predicting your business’s future revenue, expenses, and cash flow so you can plan ahead. If you’ve ever wondered whether ...

NextOre Unveils World First MR Analyser for Underground Copper Trucks

NextOre, a global leader in  Magnetic Resonance (MR)-enabled bulk ore sorting technology, has now made its world first sensor system available for...

Incode joins Australia’s Age Assurance Technology Trial to protect children online

With a market-leading +99% accuracy rate, Incode will play a key role in safeguarding Aussie minors on social media Incode Technologies Inc., a...

Empowering small businesses: Localsearch rolls out affordable digital solutions

New suite of digital solutions designed to boost visibility, engagement, and customer acquisition In response to a rapidly evolving digital lan...

Sell by LayBy