WannaCry Attacks Over Now Prepare For Bigger Adylkuzz Malware
Just as we think we are done with the WannaCry attacks, security experts believe something with much bigger proportions is being developed currently. There seems to be the threat of a second attack going on fire according to emerging reports.
Robert Holmes product vice president at Proofpoint suggests that the new attack uses same tools from the NSA leak but are stealthier to hit the patched Microsoft vulnerability.
While talking to Mirror he said
We suspect that WannaCry may have inadvertently diverted attention from this more subtle use of the NSA-leaked vulnerabilities, as our findings indicate the Adylkuzz campaign predates the WannaCry attack, starting on May 2 or earlier.
Once infected through use of the EternalBlue exploit, the cryptocurrency miner Adylkuzz is installed and used to generate cybercash for the attackers. While an individual laptop may generate only a few dollars per week, collectively the network of compromised computers appears to be generating five-figure payouts daily.
Unlike ransomware, no demands for money are made of victims. The malware is deliberately stealthy; users will only notice their Windows machine is running slowly and that they don’t have access to shared Windows resources.
Currently tens of thousands of computers worldwide are affected as part of this worldwide attack, and it’s rapidly growing.
What he said is confirmed by other security experts contibuting on the Social media about an Adylkuzz infection spreading rapidly across systems.
Tweets from Security analysts and “white hat” hackers currently working to understand the new threat.
Reports on social media also seem to point to an Adylkuzz infection spreading rapidly across systems.
Security analysts and “white hat” hackers are currently working to understand the new threat.
— Kafeine (@kafeine) May 16, 2017
— Oxford Analytica (@oxfordanalytica) May 17, 2017
— John Opdenakker (@j_opdenakker) May 16, 2017
Also Read: WannaCry Disaster Is Over! Think Twice