Researchers of cyber security from the company F5 told about a new method of hidden production of crypto currency. This time hackers could get access to the free console torrent client rTorrent. Because of the vulnerability in the application, attackers could infect the users' computers with an application for the hidden mining of the Montero crypto currency.
According to the experts, the attackers used the implementation feature in the torrent client of the XML-RPC protocol, in particular the included execute method, which allows executing arbitrary shell code on the target system.
You can infect a computer when a user goes to a page controlled by intruders. If the client rTorrent is running on the computer, the hackers install a program for the extraction of Montero crypto currency (XMR) through a vulnerability in it.
Cyber security experts advise rTorrent users to check the application for no external connections and bind the sockets of the program to the local host. In addition, you should avoid the XML-RPC functionality, if it is not the default installation, - SecurityLab cites recommendations.
During the use of the vulnerability for their own purposes, crackers were able to extract about 13 XMR, which in dollar terms is approximately four thousand.
Discuss this and other news can be in our high-tech . Anyone who is interested in the subject of crypto-currency, we invite to our , dedicated to this issue. Mining and iron lovers can .
The article is based on materials .
Comments
Post a Comment