đĄïž Cryptojacking Alert: Russian Devices Hijacked in Covert Mining Operation
According to Cointelegraph, a hacker group known as Librarian Ghouls (aka Rare Werewolf) has been behind a stealthy cryptojacking campaign infecting hundreds of devices across Russia, Belarus, and Kazakhstan since December 2024.
đ» Hereâs what happened:
âą The group used phishing emails disguised as official documents or invoices to spread malware.
âą Once inside a system, they:
o Disable Windows Defender
o Establish remote access
o Run crypto miners between 1 AM to 5 AM to avoid detection
o Exfiltrate data: login credentials, hardware specs (RAM, GPU, CPU), and more
đ Targets include:
âą Industrial enterprises
âą Engineering universities
âą Other tech-heavy institutions in Russian-speaking regions
đš Why it matters:
This operation demonstrates how cybercrime continues to evolve, with advanced timing controls, stealthy exfiltration methods, and minimal custom codeârelying instead on legitimate third-party tools.
Security experts suspect the group may even be hacktivists, not purely financially motivated.
đ§ Key takeaway for crypto users:
Always practice cyber hygiene:
âą Avoid unknown attachments
âą Use multi-factor authentication
âą Keep antivirus and firmware up-to-date
âą Monitor system resource usage during off-hours
đ This news underlines the increasing link between crypto and cybersecurity risks. Be vigilant, and safeguard your digital assets.
#CryptoNews #Cryptojacking #CyberSecurity #Kaspersky #miningscam #CryptoMining #PhishingAlert #BlockchainSecurity #BTC #BinanceStyle #DigitalSafety