Linux System Is Affected By A Malicious Crypto Mining Malware: How To Detect It?

Trend Micro, Japanese company specializing in crypto security, published a report on its website stating that they found a malware affecting Linux system.

The company found a cryptocurrency miner KORKERDS’s hidden activity from Linux users extremely suspicious and started investigation, where they found malware, later called as Coinminer.Linux.KORKERDS.AB, and its rootkit component Rootkit.Linux.KORKERDS.AA. The way of infection will be investigated very soon, there is already some information that the malware may get installed onto computer through a plugin or downloaded software. More technical aspects are described in the report.

The company explains:

“This makes it difficult to detect, as infected systems will only indicate performance issues. The malware is also capable of updating and upgrading itself and its configuration file.”

What is worth to mention is that such operating systems as Mac OS and Linux are considered to be immensely secured, thus, it is hard to integrate any file without users’ consent. The malicious mining software seems to be a built-in plugin, where a user gives an administrator consent to install anything.

Trend Micro provided some Indicators of Compromise (IoCs) to prevent users to be affected: (Editor’s Note: Indicator of compromise (IOC) — is an artifact observed on a network or in an operating system that with high confidence indicates a computer intrusion. Typical IOCs are virus signatures and IP addresses, MD5 hashes of malware files or URLs or domain names of botnet command and control servers. Source: https://en.wikipedia.org/ )

Related hashes (SHA-256):

  • cdd921a5de5d5fffc51f8c9140afa9d23f3736e591fce3f2a1b959d02ab4275e (Trojan.Linux.DLOADER.THAOOAAK)
  • baf93d22c9d1ae6954942704928aeeacbf55f22c800501abcdbacfbb3b2ddedf (Coinminer.Linux.KORKERDS.AB)
  • 0179fd8449095ac2968d50c23d37f11498cc7b5b66b94c03b7671109f78e5772 (Coinminer.Linux.KORKERDS.AA)
  • 023c1094fb0e46d13e4b1f81f1b80354daa0762640cb73b5fdf5d35fcc697960 (Rootkit.Linux.KORKERDS.AA)

Related malicious URL:

  • hxxps://monero[.]minerxmr[.]ru/1/1535595427x-1404817712[.]jpg

We want to remind you, no matter how secure your computer is, in your opinion, it still may be affected by professional cryptohackers. Thereby, if you find any suspicious file or plugin, please, read the following article or consult service centre.

What Is Hidden Mining, Why Is It Dangerous and How to Delete the Virus?

Subscribe to The Coin Shark news in Facebook: https://www.facebook.com/coinshark/

Unit 42 Found Malware Which Threatens Israeli Fintech And Crypto Companies

Famous cybersecurity company Palo Alto Networks with its subsidiary Unit 42 found a malware which attacks two Israeli-based fintech companies, according to the recent blog post made by the company.

The report says that Unit 42 first bumped into the malware called Cardinal RAT in 2017, since then malicious software has been attacking two Israeli firms that engaged in crypto trading and developing forex. This malware is a Remote Access Trojan (RAT), by using it the culprit can remotely take control of the system.

The first version of Cardinal RAT has been recently updated, the newest version is using various obfuscation techniques to hinder analysis of the underlying code. The code of the most recent malware is:

SHA256 b742162197744a8caeb09f954213a3172ed699f8375f69c40b57b8c219c5e37c

The software itself gathers different information about victims, later remotely changes or updates its settings, gives commands and even uninstalls itself. The malware is so powerful that it can recover passwords and execute or download files without permission, it also cleans cookies from browsers.

The research team stated in the report that malicious malware Cardinal RAT has similar features with a JavaScript-based malware – EVILNUM. It is also used to attack against fintech organizations. Such malware families are very rare, thus developers and workers of fintech companies should be careful.

We remind you

The Hackers of the “51% Attack” on Ethereum Classic Returned Half of the Stolen Funds

Subscribe to The Coin Shark news in Facebook: https://www.facebook.com/coinshark/

Visa Plans to Open a Blockchain Department

Visa’s immediate plans are to open a new department which will be directly connected with cryptocurrencies and blockchain technology. It became known immediately after the company published a vacancy of a new manager.

Main requirements for an applicant:

  • in-depth knowledge about private blockchain;
  • familiarity with advanced cryptography is preferred;
  • an understanding of existing retail payment solutions;
  • 4 to 7 years of relevant experience.

Manager of a new department will have to carefully follow the latest solutions and technologies in this area. He will also have to implement them promptly in the company’s own products.

Recall, yesterday we wrote that the US government can completely ban Visa and Mastercard payment systems in Venezuela. It is connected with the extension of sanctions against the current President Maduro. This can significantly affect the already weak economy of the country.

USA Can Extend Sanctions Against Maduro Government and Ban VISA and Mastercard in Venezuela

Subscribe to The Coin Shark news in Facebook: https://www.facebook.com/coinshark/

Donald Trump Might Have Increased His Wealth Due to Some Shady Business with Deutsche Bank

Donald Trump has undoubtedly won the title of the most eccentric president of the United States. Given the amount of accusations, convictions and general displeasure, it is a wonder how he has not been impeached yet. However, this new endeavour might put the last bits of his reputation at stake.

The New York Attorney General started an investigation regarding the financial relationship between the Trump Organization and Deutsche Bank. Reportedly, the major German bank has provided over 2 billion dollars in loans to the American president over the years.

The misconduct of Trump

The story begins in 2004, when Trump first encountered Deutsche Bank. The businessmen went to the real estate department and filed for a loan for his 92-story Trump International Hotel and a Trump Tower in Chicago.

At first sight everything seems fine, but it surely isn’t. When asked about the financial situation, Trump claimed to own a much larger sum of money than he actually had back then. Simply speaking, he lied to the bank about his net worth.

Mr. Trump told Deutsche Bank his net worth was about $3 billion, but when bank employees reviewed his finances, they concluded he was worth about $788 million, according to documents produced during a lawsuit Mr. Trump brought against the former New York Times journalist Timothy O’Brien,” is mentioned in the investigation files.

The weird thing is that although the bank officials surely suspected something, they didn’t take time to check and verify the information provided by Trump. Instead of that, they kept loaning him massive amounts of money.

In 2010 Trump received a 100-million-dollar loan from the Deutsche Bank to built a resort in Florida. Experts claim that he deliberately increased his net worth by almost 70% in the application in order to get the money.

In 2014 the current US president tried to purchase the popular football team Buffalo Bills. When the NFL demanded the proof that he would have enough finances to conduct the deal, Trump claimed that he owned almost 9 billion dollars, and this all happened through Deutsche Bank once again.

Right now, the authorities are finally starting to see the whole picture and its scale. The investigation has already started. Faking net worth to get such huge loans might result in big problems for both Trump and Deutsche Bank.

Subscribe to The Coin Shark news in Facebook: https://www.facebook.com/coinshark/

USA Can Extend Sanctions Against Maduro Government and Ban VISA and Mastercard in Venezuela

At the moment the USA government discusses the possibility of introducing a new package of sanctions, which in fact will prohibit the operation of such systems like Visa and Mastercard in Venezuela.

According to the administration of Donald Trump, such a step would cause irreparable damage to the Maduro government regime, which the United States recognized as illegitimate. These sanctions will mean a total ban for any American company to cooperate with any Venezuelan company that has at least some relation to the current Maduro regime.

The main purpose of these sanctions is to put pressure on the current leadership of Venezuela. However, such actions may affect the lives of ordinary citizens of the country. How to avoid this, officials do not know yet, although they claim that there are some tricks which allow making a number of exceptions.

On Saturday, March 16, Juan Guaido (head of the Venezuelan opposition) said that they managed to take under control the Citgo – a subsidiary of the state-owned oil giant PDVSA.

Recall, recently we wrote that the Russian bank “Eurofinance Mosnarbank”, which cooperated with the already mentioned company PDVSA, came under sanctions.

The USA Imposed Targeted Sanctions on a Russian Bank Which Was Involved in the Creation of El Petro

If the VISA and Mastercard systems stop working in the country, then people will have no other choice but to switch completely to using Bitcoin or their own cryptocurrency El Petro. Given that Venezuelans are used to living in hyperinflationary conditions, cryptocurrency will seem like a fairly stable asset for them.

Subscribe to The Coin Shark news in Facebook: https://www.facebook.com/coinshark/

FUBT: Empowering Digital Assets and Boosting the Token Economy

In the recent couple of years, Asia has become the region that is ahead of everybody when it comes to technologies. Anything that is new, unique and has potential is quickly being implemented in the East, while the rest of the world is just thinking it over. Certainly, blockchain and digital assets are no exception to the rule. Dozens if not hundreds of businesses, companies and projects in China, Japan, South Korea etc. are creating new concepts, ideas and solutions using cutting edge technologies, like blockchain and distributed ledger technology, in many different spheres, especially fintech.

What is FUBT?

FUBT Exchange is a Hong Kong-based project, the main focus of which is maintaining a blockchain platform for trading digital assets. The exchange evolved from the FUBT Station. In July of 2017, first transaction were conducted through the upgraded platform. Afterwards the developers launched their own token – BXB, which skyrocketed by almost 25 times on the market. FUBT kept growing and expanding. At the beginning of 2018, it opened up departments in other regions of Asia, namely Seoul, Cambodia, Tokyo, Taiwan, Phnom Penh and even one in New York. Now FUBT is considered one of the leading blockchain platforms for trading digital assets in Asia.

Strong sides and interesting facts about FUBT:

  • In June of 2018, the platform already had around 650 thousand active users which serves as perfect evidence of the project’s trustworthiness;
  • FUBT’s daily capital turnover equals to around 400 million dollars;
  • The platform is expanding globally and provides multi-language support for better understanding of users from different parts of the world;
  • The transactions within FUBT are conducted in a fast and simple manner, moreover, they are protected against security breaches;
  • The exchange provides a variety of digital assets, overall about 100 kinds;
  • Four crypto trading areas (BTC, ETH, FBT) are available on the platform;
  • FUBT has a mobile app both for iOS and Android;
  • The team of the project consists of real professionals from the fields of banking, fintech, blockchain, investment etc.
  • Core values of FUBT are “Integrity, Innovation, Inclusiveness, and Win-Win”;
  • The project has ambitious goals of expanding further and establishing itself firmly on the market;
  • FUBT team is constantly looking for new clients, partnerships, opinion leaders and pays a lot of attention to user feedback in order to improve and prosper.

More details on this promising and innovative platform can be found here.

Subscribe to The Coin Shark news in Facebook: https://www.facebook.com/coinshark/

Japan’s Biggest Bank Is Not Going To Create Its Own Cryptocurrency: Fake News Is Not Confirmed

Japan is one of most developed countries in the whole world, when it comes to economic sector, all the spheres are regulated making investments easy and save. News outlets shocked everyone with the news that Japan’s Mizuho bank creates its own cryptocurrency, as it turned out later, the coin is real but the crypto is not.

Cash VS. Online Payments

Even though Japan seems to be a modern country with innovative technological potential, most of its citizens prefer using cash to cards or online payments. In terms of payment systems adoption, the country is definitely left behind, especially if we compare it to China where WePay and AliPay thrive. There are some reasons for this phenomenon. First of all, low interest rates make Japanese hoard their cash. Second of all, the country is very safe, so taking cash with oneself brings no trouble at all. Thirdly, the Japanese population is old, the average age is 47, thus digital payments slowly adjust among citizens.

Summer Olympics in Tokyo

In 2020, the worldwide competition – the Olympic Games – are held in Tokyo. The government rose awareness of lack of electronic payment devices around the country. Thus, it is pushing banks and merchants to find solutions regarding to this problem. Moreover, the government is planning to increase the percentage of people using payment services after the Olympics.

J-Coin To Replace Cash

As a part of the policy of implementing electronic payments, the largest bank in Japan, Mizuho, as well as other 60 financial institution are releasing digital wallet called J-Coin. In the operating method, it resembles AliPay and WePay – scan QR-code and pay. According to the representatives of Mizuho bank, J-Coin has nothing to do with crypto or blockchain in any form.

Subscribe to The Coin Shark news in Facebook: https://www.facebook.com/coinshark/