When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Imagine if your antivirus program infected your gear withmalware- thats exactly what happened to some eScan antivirus users recently.
Among those additional payloads is, ironically enough, XMRig - an actual cryptocurrency miner.
Image Credit: Pixabay
Avast has attributed this attack to Kimsuki since GuptiMiner is quite similar to the Kimsuky keylogger.
Furthermore, in both instances the mygamesonline[.
]org domain was used.
XMRig is not the only piece of malicious code that Kimsuki dropped on their targets.
The targets seem to be mostly big corporations.
Since the discovery of the campaign, eScan was notified and has subsequently plugged the hole.
According toBleepingComputer, the company also said it received a similar report back in 2019.
A year later, it implemented a robust checking mechanism, to ensure the rejection of non-signed binaries.
