Cybersecurity News in Asia

Features
- Featured
  
  What businesses need to know about SEO poisoning
  
  Tuesday, April 16, 2024, 4:55 PM Asia/Singapore | Features
- Featured
  
  Immutable data critical to AI projects and cyber resilience
  
  Thursday, April 11, 2024, 11:46 AM Asia/Singapore | Data Protection, Features
- Featured
  
  Preparing for the benefits and risks of quantum computing: Leap or Lag?
  
  Monday, March 18, 2024, 2:55 PM Asia/Singapore | Features
News
- Featured
  
  What do trends in one Q1 2024 cyber landscape report translate to?
  
  Tuesday, April 16, 2024, 3:20 PM Asia/Singapore | Cyberthreat Landscape, News
- Featured
  
  Filipinos laud adoption of five-year national cybersecurity plan
  
  Tuesday, April 16, 2024, 3:12 PM Asia/Singapore | News, Newsletter
- Featured
  
  Did cyberattackers switch to high-hanging fruit in 2023?
  
  Monday, April 15, 2024, 11:55 AM Asia/Singapore | News, Newsletter
Opinions
Tips
Whitepapers
Awards 2023
Directory
E-Learning

News

New variant of Golang malware attacks both Microsoft and Linux machines

By webmaster webmaster | Monday, June 29, 2020, 10:53 AM Asia/Singapore

Originating from China, the malware that previously infected only Linux systems now also targets Microsoft servers to mine Monero.

A new variant of the cryptominer malware known as Golang is targeting Windows and Linux, according to new findings from cybersecurity firm Barracuda.

There is nothing new about hackers writing malware in the Golang (Go) programming language to steal data from victims and avoid detection. However, in the current variant of attack, instead of targeting end users, servers across both Windows and Linux machines are hit.

Although the volume of attacks is low because the variant is so new, they have already been detected from seven source IP addresses so far, all based in China.

The new variant of ‘Golang’ malware works by attacking web application frameworks, application servers, as well as non-HTTP services such as Redis and MSSQL. Its main goal is to mine Monero cryptocurrency using a known miner, XMRig. The malware spreads as a worm, searching and infecting other vulnerable machines.

Previously only hit Linux systems

Earlier variants of this malware targeted only Linux machines, but this new iteration also attacks Windows machines and uses a new pool of exploits, in some cases targeting the ThinkPHP web application framework, which is popular in China. Similar to other families of malware, this malware will presumably keep evolving, employing more and more exploits.

Said James Forbes-May, Vice President, Barracuda, Asia-Pacific: “In order to protect against this new malware variant, it’s crucial to make sure you have a properly configured web application firewall in place. This malware variant spreads by scanning the internet for vulnerable machines. Many organizations overlook application security, but it’s still a top threat vector that cybercriminals look to exploit.”

Forbes-May advises IT teams to make sure their system is up-to-date on patches and updates; and they should have a solution in place to monitor for this kind of activity, understand how this malware variant works and know the warning signs.

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Secure Access Service Edge (SASE) Solutions for Today’s Work-From-Anywhere (WFA) Environment
Organizations are turning to Secure Access Service Edge (SASE) solutions for securing remote work environments, …Download Whitepaper
Identity Has Breached the Ecosystem
This whitepaper explores the dual nature of identity in cybersecurity, emphasizing its role in both …Download Whitepaper
Fortanix Buyers Guide for Modern Key Management and Data Security
This document underscores the pressing challenges in key management and data securityDownload Whitepaper
Fortanix Data Risk Management – Using Tokenization to Secure Your Data
In today's digital world, organizations prioritize data security. To protect sensitive information, they use tokenization, …Download Whitepaper

Middle-sidebar-banner

Case Studies

Identity security woes now a thing of the past for Heng Leong Hang
The retail chain was grappling with numerous cyber risks in its IT infrastructure until it …Read more
Indonesia’s cyber defense agency tackles Defender’s Dilemma with new initiatives
The country’s public sector will benefit from three pillars of training, intelligence and capacity-building schemes …Read more
SingAREN showcases what a national research community needs for cyber protection
With threat actors thirsting to steal international research data, what kind of cybersecurity platform can satisfy …Read more
Indian pharmaceutical firm futureproofs security with Check Point
Safeguarding research data and intellectual property requires a futureproofed security infrastructure.Read more

Cybersecurity News in Asia

Featured

What businesses need to know about SEO poisoning

Featured

Immutable data critical to AI projects and cyber resilience

Featured

Preparing for the benefits and risks of quantum computing: Leap or Lag?

Featured

What do trends in one Q1 2024 cyber landscape report translate to?

Featured

Filipinos laud adoption of five-year national cybersecurity plan

Featured

Did cyberattackers switch to high-hanging fruit in 2023?

New variant of Golang malware attacks both Microsoft and Linux machines

Previously only hit Linux systems

Related Posts

Leave a reply Cancel reply

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Middle-sidebar-banner

Case Studies

Bottom sidebar