Nansh0u not your normal cryptominer. [Research Saturday]
By N2K Networks
20/07/19·20m 6s
Researchers at Guardicore Labs have been tracking an unusual cryptominer that seems to be based in China and is targeting Windows MS-SQL and phpMyAdmin servers. Some elements of the exploit make use of sophisticated components previously associated with nation-state actors.
Ophir Harpaz and Daniel Goldberg are members of the Guardicore Labs team, and they join us to explain their findings.
The research can be found here -
https://www.guardicore.com/2019/05/nansh0u-campaign-hackers-arsenal-grows-stronger/