. home.aspx



Operation Prowli Malware Infected 40,000 Machines

June 06, 2018 / Kacy Zurkus

Researchers have discovered a traffic manipulation and cryptocurrency mining campaign infecting organizations across industries from finance to education and government. The Operation Prowli campaign has been spreading malware and malicious code to servers and websites around the world, and more than 40,000 machines reportedly have been infected. The GuardiCore Labs team found that by using exploits, password-brute-force and weak configurations attackers have had widespread success with the Prowli campaign. Targeting a variety of platforms from CMS servers hosting popular websites to backup servers running HP Data Protector and DSL modems, the multipurpose operation also goes after IoT devices. Relying on digital currencies and traffic redirection, the campaign has already victimized more than 9,000 companies. Traffic monetization frauds are trending on the internet where attackers leverage tech support scams and promote fake websites to lure unsuspecting users away from their legitima...