A variant of satori botnet has attacked some ethereum platforms

New security problem in the world of cryptocurrencies. This time it is a variant of the Satori botnet that has attacked some Claymore mining platforms. The function of this botnet is to replace the credentials of the owner with those of the attacker. This affects the Ethereum cryptocurrency, the second largest on the market.

A variant of Satori Botnet has attacked some Ethereum platforms

Attacks related to Ethereum are frequently seen, whose security has been questioned on many occasions. Now, this new variant of Satori puts cryptocurrency platforms back in check.

Ethereum platforms affected

The new variant remains the same as the previous one, although in this case it adds an additional exploit. One that the researchers themselves were not expecting. Since it looks for port 3333 and implements in it an exploitation code for the Claymore cryptocurrency mining software. It appears to be targeting a vulnerability that affects the Claymore software management interface. This allows attackers to interact with the device.

Since the attacker changes the mining settings in Claymore to one of his own, which causes him to mine Ethereum. So it is a more cryptocurrency related attack. Something that has increased significantly in recent months.

Hidden mining has become very popular in recent months. It seems to show no signs that it will end soon. Something that undoubtedly poses a notable threat to users. So it is required to take the maximum precautions.

Bleeping Computer Font