Wednesday, Jul 15, 2026
English News
  • Hyderabad
  • Telangana
  • AP News
  • India
  • World
  • Entertainment
  • Sport
  • Science and Tech
  • Business
  • Rewind
  • ...
    • NRI
    • View Point
    • cartoon
    • My Space
    • Education Today
    • Reviews
    • Property
    • Lifestyle
E-Paper
  • NRI
  • View Point
  • cartoon
  • My Space
  • Reviews
  • Education Today
  • Property
  • Lifestyle
Home | Science & Tech | New Crypto Malware Targeting Windows Linux Systems Microsoft

New crypto malware targeting Windows, Linux systems: Microsoft

Called 'LemonDuck', the crypto mining malware is targeting Windows and Linux systems, spreading via phishing emails, exploits, USB devices and brute force attacks in various countries, including India.

By IANS
Published Date - 25 July 2021, 06:53 PM
New crypto malware targeting Windows, Linux systems: Microsoft
whatsapp facebook twitter telegram

New Delhi: Microsoft has warned customers about a new crypto mining malware that can steal credentials, remove security controls, spread via emails and ultimately drop more tools for human-operated activity.

Called ‘LemonDuck’, the crypto mining malware is targeting Windows and Linux systems, spreading via phishing emails, exploits, USB devices and brute force attacks in various countries, including India.


“LemonDuck’s threat to enterprises is also in the fact that it’s a cross-platform threat. It’s one of a few documented bot malware families that targets Linux systems as well as Windows devices,” warned Microsoft 365 Defender Threat Intelligence Team.

The malware can quickly take advantage of news, events, or the release of new exploits to run effective campaigns.

“For example, in 2020, it was observed using Covid-19-themed lures in email attacks. In 2021, it exploited newly patched Exchange Server vulnerabilities to gain access to outdated systems,” Microsoft informed.

This threat, however, does not just limit itself to new or popular vulnerabilities.

It continues to use older vulnerabilities, which benefit the attackers at times when focus shifts to patching a popular vulnerability rather than investigating compromise.

“Notably, LemonDuck removes other attackers from a compromised device by getting rid of competing malware and preventing any new infections by patching the same vulnerabilities it used to gain access,” said the company.

In the early years, LemonDuck targeted China heavily, but its operations have since expanded to include many other countries — the US, India, Russia, China, Germany, the UK, Korea, Canada, France, and Vietnam.

“Once inside a system with an Outlook mailbox, as part of its normal exploitation behaviour, LemonDuck attempts to run a script that utilises the credentials present on the device,” the Microsoft team said.

The script instructs the mailbox to send copies of a phishing message with preset messages and attachments to all contacts.

Because of this method of contact messaging, security controls that rely on determining if an email is sent from a suspicious sender don’t apply.

“This means that email security policies that reduce scanning or coverage for internal mail need to be re-evaluated, as sending emails through contact scraping is very effective at bypassing email controls,” the company suggested.

Last Monday, US President Joe Biden’s administration finally came out publicly against China’s involvement in cybercrimes, accusing it of running a massive global operation of “state-sponsored activities” causing billions of dollars of losses to victims.

In a show of solidarity indicating the serious global repercussions, all the 30 NATO allies and the European Union, Australia, New Zealand, and Japan joined in indicting Beijing.

Secretary of State Antony Blinken said that the US and its allies had “formally confirmed” that China’s Ministry of State Security (MSS) used the vulnerabilities in the Microsoft Exchange Server “in a massive cyber espionage operation that indiscriminately compromised thousands of computers and networks, mostly belonging to private sector victims”.

  • Follow Us :
  • Tags
  • crypto
  • crypto mining
  • malware
  • Microsoft

Related News

  • India emerges as major global hub for AI data centre investments

    India emerges as major global hub for AI data centre investments

  • CERT-in warns WhatsApp web, desktop users of large-scale malware campaign

    CERT-in warns WhatsApp web, desktop users of large-scale malware campaign

  • Microsoft cuts Claude Code access as AI coding costs surge

    Microsoft cuts Claude Code access as AI coding costs surge

  • Microsoft veteran and VC leader Soma Somasegar dies, tributes pour in

    Microsoft veteran and VC leader Soma Somasegar dies, tributes pour in

Latest News

  • SBI Funds Management IPO fully subscribed on Day 2

    22 seconds ago
  • Axar Patel credits patience and self-belief after match-winning all-round show against England

    14 mins ago
  • Jantar Mantar protest: Tharoor appeals to Wangchuk to end fast, urges govt to initiate dialogue

    23 mins ago
  • Farhan Akhtar celebrates 15 years of ‘Zindagi Na Milegi Dobara’ with nostalgic post

    28 mins ago
  • India-origin pharma patents jump four-fold, innovation pipeline tops 1,095: Report

    32 mins ago
  • Pune marine engineer missing after Strait of Hormuz vessel attack confirmed dead

    34 mins ago
  • Lancet Study highlights NZ smoking rate drops from 40% to 7% with safer alternatives: Insights for India

    34 mins ago
  • INS Sudarshini showcases India’s maritime heritage at SAIL Boston 250

    53 mins ago

company

  • Home
  • About Us
  • Contact Us
  • Privacy Policy

business

  • Subscribe

telangana today

  • Telangana
  • Hyderabad
  • Latest News
  • Entertainment
  • World
  • Andhra Pradesh
  • Science & Tech
  • Sport

follow us

  • Telangana Today Telangana Today
Telangana Today Telangana Today

© Copyrights 2024 TELANGANA PUBLICATIONS PVT. LTD. All rights reserved. Powered by Veegam