Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.


Tennessee Hospital Hit With Cryptojacking Attack Sends Out Databreach Notification

Decatur County General Hospital is notifying 24,000 patients of cryptomining software on its EMR system.

In what may be the first report I’ve seen of a hospital having their EMR server hit with cryptomining malware, Decatur County General Hospital in Parsons, Tennessee started notifying 24,000 patients on January 26.  


Cisco: "Cybercrime Swaps Ransomware For Cryptomining, Generating Millions"

Cisco's Talos Threat Intelligence team has a good observation.

Cybercriminals can just steal CPU/GPU cycles and directly generate any cryptocurrency without infecting the system with ransomware.

It's called cryptomining and is exploding on the scene. More stealthy than ransomware, this malware infects the workstation or server and significantly slows performance down, damaging productivity in a hidden way.

The mining software in itself is not "malicious", but if it is used to steal your organization's resources I vote for calling it malware anyway. Cryptominers have several infection vectors:


What are “WannaMine” attacks, and how do I avoid them?

It's suddenly all over the news. In hindsight, it was a matter of "not if, but when". 

Sophos just warned against a new hybrid worm that combines the ETERNALBLUE exploit and cryptomining.

ETERNALBLUE is the infamous escaped NSA code that was used in the WannaCry worm, so the combination of this method of breaking in, followed by a cryptomining payload, has been dubbed WannaMine.

Subscribe To Our Blog

Phish Your Users

Recent Posts

Get the latest about social engineering

Subscribe to CyberheistNews