How a Prominent Cryptomining Botnet is Paving the Way for a Lucrative and Illicit Revenue Model

Carbon Black

Carbon Black’s (CB) Threat Analysis Unit (TAU) has uncovered a secondary component in a well-known cryptomining campaign. The malware has been enhanced to also steal system access information for possible sale on the dark web. Combined together, this attack is being classified as “Access Mining.” This discovery indicates a bigger trend of commodity malware evolving to mask a darker purpose and will force a change in the way cybersecurity professionals classify, investigate and protect themselves from threats.

The existence of Access Mining forces the cybersecurity field to take a closer look at commodity malware and search for the hidden agenda of establishing persistent remote access and exfiltrating sensitive system information. Learn more about the key elements of access mining campaigns.