Latest news about Bitcoin and all cryptocurrencies. Your daily crypto news habit.
Researchers at Intezer discovered a new malware that relies on the Dogecoin blockchain network to deploy the attack against cloud servers.
A new study indicates that hackers are actively relying on the Dogecoin (DOGE) blockchain to expand a malware payload named âDoki.â
According to cybersecurity researchers at Intezer, Doki is a fully undetected backdoor that abuses the Dogecoin blockchain âin a unique wayâ in order to generate its C2 domain address and breach cloud servers. It is deployed through a botnet called Ngrok.
These domain addresses are used by the malware to search for additional vulnerable cloud servers within the network of the victim.
Intezerâs study explains further about the deployment of the attack:
âThe attacker controls which address the malware will contact by transferring a specific amount of Dogecoin from his or her wallet. Since only the attacker has control over the wallet, only he can control when and how much dogecoin to transfer, and thus switch the domain accordingly.â
Undetected for over six months
Intezer says that using Dogecoin to deploy a crypto-unrelated malware may be âquite resilientâ to both law enforcement and security products. Thatâs why Doki has managed to stay undetected for over six months, despite having been uploaded to the VirusTotal database in January.
The study highlights that such an attack âis very dangerousâ:
âOur evidence shows that it takes only a few hours from when a new misconfigured Docker server is up online to become infected by this campaign.â
Recently, the threat intelligence team at Cisco Systems discovered a new cryptojacking botnet named âPrometei.â This botnet both mines Monero (XMR) and steals data from the targeted system.
Disclaimer
The views and opinions expressed in this article are solely those of the authors and do not reflect the views of Bitcoin Insider. Every investment and trading move involves risk - this is especially true for cryptocurrencies given their volatility. We strongly advise our readers to conduct their own research when making a decision.