create account


advanced mode

Monero Mining Malware Attack Linked to Egyptian Telecom Giant by blackfl4g

View this thread on steemit.com
View on official site
· @blackfl4g ·
Monero Mining Malware Attack Linked to Egyptian Telecom Giant
Unidentified entities at a telecom company connected to the Egyptian government are using malware to trick Middle Eastern Web users into unwittingly mining monero, according to a new report.

Internet users in Turkey and Syria who downloaded Windows applications such as Avast Antivirus, CCleaner, Opera, or 7-Zip were unknowingly redirected to malicious versions with malware, the University of Toronto's Citizen Lab claimed in a study published Friday.

The report - which calls this scheme "AdHose - explained:
"We found that a series of middleboxes on Türk Telekom's network were being used to redirect hundreds of users attempting to download certain legitimate programs to versions of those programs bundled with spyware....We found similar middleboxes at a Telecom Egypt demarcation point. The middleboxes were being used to redirect users across dozens of ISPs to affiliate ads and browser cryptocurrency mining scripts."

Telecom Egypt is a major state-owned telecommunications company, and the middleboxes in question include Sandvine PacketLogic devices, which have been associated with government surveillance in Turkey and Syria. The researchers' regional network sweep in January found 5,700 devices affected by AdHose.

When reached for comment, Sandvine pushed back against the report's findings, telling CoinDesk:
"Based on a preliminary review of the report, certain Citizen Lab allegations are technically inaccurate and intentionally misleading....We have never had, directly or indirectly, any commercial or technology relationship with any known malware vendors, and our products do not and cannot inject malicious software. While our products include a redirection feature, HTTP redirection is a commodity-like technology that is commonly included in many types of technology products."

The spokesperson also said that an investigation into the allegations is being undertaken because the company is "deeply committed to ethical technology development."

The idea of cryptocurrency-fueled government spyware may seem far-fetched. However, researchers involved with the Tor Project's Open Observatory of Network Interference noted a similar malware epidemic - minus the cryptocurrency mining element - in 2016. Tor researchers found the Telecom Egypt-owned internet provider TE Data, which controls the majority of Egyptian internet bandwidth, facilitated a man-in-the-middle attack with both malware and affiliate advertising.![2.jpg](https://steemitimages.com/DQmb5Wfec9244G2ZvkQqH4wj8q9hX7ni7pXj1a7BEbVTXDT/2.jpg)
json_metadata{"tags":["monero","crime","mining","malware","spyware"],"image":["https://steemitimages.com/DQmb5Wfec9244G2ZvkQqH4wj8q9hX7ni7pXj1a7BEbVTXDT/2.jpg"],"app":"steemit/0.1","format":"markdown"}
created2018-03-13 17:23:45
active2018-03-13 17:23:45
last_payout2018-03-20 17:23:45
depth0
children0
net_rshares0
vote_rshares0
children_abs_rshares0
cashout_time1969-12-31 23:59:59
max_cashout_time1969-12-31 23:59:59
total_vote_weight0
reward_weight10,000
total_payout_value0.000 SBD
curator_payout_value0.000 SBD
author_rewards0
net_votes0
root_authorblackfl4g
root_permlinkmonero-mining-malware-attack-linked-to-egyptian-telecom-giant
max_accepted_payout1,000,000.000 SBD
percent_steem_dollars10,000
allow_repliestrue
allow_votestrue
allow_curation_rewardstrue
beneficiaries[]
root_title"Monero Mining Malware Attack Linked to Egyptian Telecom Giant"
pending_payout_value0.000 SBD
total_pending_payout_value0.000 STEEM
author_reputation80,602,412
promoted0.000 SBD
body_length0
reblogged_by[]

vote your-acct "blackfl4g" "monero-mining-malware-attack-linked-to-egyptian-telecom-giant" 100 true
post_comment your-acct "re-blackfl4g-monero-mining-malware-attack-linked-to-egyptian-telecom-giant-20180624t165442140z" "blackfl4g" "monero-mining-malware-attack-linked-to-egyptian-telecom-giant" "" "your reply.." "{}" true


created by @roadscape