Microsoft has recently warned customers regarding new crypto mining malware that can be cause for various security threats including stealing credentials and remove security controls. The malware is said to be entering Linux systems and Windows devices through phishing e-mails that can exploit USB devices, and brute force attacks in various countries including India.
The malware is named as “LemonDuck” and can be a major threat to enterprises also as it’s a cross-platform threat. The Microsoft 365 Defender Threat Intelligence Team declared that it’s among the few documented bot malware families that targets Linux systems and Windows devices. The malware can quickly take advantage of news, events, or the release of new exploits to run effective campaigns. The Microsoft also reported that, “in 2020, it was observed using Covid-19-themed lures in email attacks. In 2021, it exploited newly patched Exchange Server vulnerabilities to gain access to outdated systems”.
The Microsoft 365 Defender Threat Intelligence Team is looking into the complexities and threats that this malware can cause to other devices and software and are trying their best to develop a possible solution against such malwares.