Summary: A new mass malware campaign is distributing a cryptocurrency miner called SilentCryptoMiner under the guise of a tool for bypassing internet restrictions, affecting over 2,000 Russian users. This attack utilizes deceptive practices involving fake installation instructions that encourage users to disable their security solutions. Leveraging advanced techniques such as process hollowing, the malware evades detection while masquerading as legitimate software.
Affected: Russian users and cybersecurity systems
Keypoints :
- Disguised as a tool to circumvent online restrictions, SilentCryptoMiner is part of a growing trend in malware distribution.
- The campaign has exploited platforms like YouTube and Telegram to reach users, often leading to the compromise of their systems.
- Utilizes process hollowing and avoids detection by modifying legitimate scripts and inflating file sizes.
Source: https://thehackernews.com/2025/03/silentcryptominer-infects-2000-russian.html