Complex New Cryptojacking Attack Powered By NSA Exploit


Researchers from Imperva have just discovered an extremely complex cryptojacking attack dubbed RedisWannaMine, which is powered by Redis and NSA exploits and aimed at both database servers and application servers.

The attack is a new generation cryptojacking attack, which demonstrates worm-like behaviour combined with advanced exploits to increase the attackers’ infection rate and fatten their wallets. The attackers are targeting machines using the NSA’s EternalBlue SMB exploit, as well as the Redis cache server. The discovery of the attack shows how cryptojackers are upping their game to bypass security controls.

In this article