July 27, 2017
Shah Sheikh (1294 articles)


Security researchers at Kaspersky Labs detected a new backdoor malware that allows its creators to execute remote commands on any system and is known as CowerSnail.

The backdoor uses the same C&C server as the malware that was used to mine cryptocurrency on a Linux machine by exploiting the SambaCry vulnerability.

After recent events of ransomware that caused havoc worldwide, it was said that the ransomware exploited the SambaCry vulnerability for the attack to be successful. The vulnerability was then bought into the limelight and made a group of hackers install a cryptocurrency mining software “CPUminer” to mine cryptocurrencies on a Linux machine.

The same group of hackers are now targeting both Windows and Linux machines by exploiting this vulnerability.

Samba is an open-source software that provides file and print services for various Microsoft Windows Clients and runs on majority of operating systems and IoT devices.

More information regarding the backdoor can be found here.