$ 29,265.00 3.37%
$ 1,965.69 3.16%
$ 49.51 5.50%
$ 0.084292 2.89%
$ 7.77 2.59%
$ 1.34 5.52%
$ 0.000110 21.39%

Lucifer Monero mining malware now can and infect Linux systems


Authors of Satan Monero mining malware, which is commonly known for affecting vulnerable Windows systems, have extended the botnet capability to now target Linux systems. Once a system is infected, the malware uses the device to mine Monero (XMR), a privacy-focused digital currency, by deploying an XMRig miner.

Monero mining malware attacks Linux systems

As Bleeping Computer reported on Wednesday, the new action enabled on the Lucifer Monero mining malware was discovered by Cybersecurity researchers at NETSCOUT’s ATLAS Security Engineering & Response Team (ASERT). Originally, the botnet was dubbed Satan DDoS by the authors. However, researchers renamed it Lucifer DDoS to differentiate it from Satan ransomware.

The researcher said it a hybrid DDoS botnet commonly known for infecting Windows devices to mine cryptocurrency. The malware brute-forced and used weaponized exploits on vulnerabilities to deploy the XMRig miner on Windows systems, when it was first discovered in May by Palo Alto Networks Unit 42 researchers.

However, this same Monero mining malware has been upgraded by the authors to scan and infect Linux systems as well. In addition to that, the malware now has the capability to steal credentials and escalate privileges on the Windows systems. It can also execute cryptojacking, TCP, UCP, and ICMP-based flooding attacks, sais the researchers.

Systems at risks of DDoS attacks

The researchers at NETSCOUT further explained: 

“The fact that it can run on Linux-based systems means that it can potentially compromise and make use of high-performance, high-bandwidth servers in internet data centers (IDCs), with each node packing a larger punch in terms of DDoS attack capacity than is typical of most bots running on Windows or IoT-based Linux devices.”

Meanwhile, the cryptocurrency wallet associated with the malware had only $30 worth of Monero when it was initially spotted. The researchers believe that the authors of the malware are looking to mine more of the crypto from additional devices following the upgrade made to it. However, Windows and Linux users can choose to stay safe by adhering to certain security measures, such as OS security updates.

Ibiam Wayas

Ibiam Wayas

Ibiam is an optimistic crypto journalist. Five years from now, he sees himself establishing a unique crypto media outlet that will breach the gap between the crypto world and the general public. He loves to associate with like-minded individuals and collaborate with them on similar projects. He spends much of his time honing his writing and critical thinking skills.

Related News

Hot Stories

Dogecoin price analysis: DOGE illustrates stable dynamics at $0.0869
Verasity Price Prediction 2022-2031: Soon to hit $0.50 after Crypto.Com listing?
Polkadot price analysis: DOT/USD gains a massive value at $10.08
Vitalik Buterin reveals when Ethereum merge could happen
Shiba Inu Price Prediction 2022-2030: Is SHIB Skyrocketing Soon?

Follow Us

Industry News

President of Panama Refuses to Sign the Cryptocurrency Bill
Gabe Plotkin's hedge fund Melvin Capital shut its doors this week
CFTC indicts 2 men for running a $44M crypto Ponzi scheme
Goldman Sachs: crypto crash has little effect on the US economy
Commonwealth bank halts crypto pilot program