A new strain of malware, identified as PG_MEM, is targeting PostgreSQL databases, a widely utilized online database system, for cryptocurrency mining operations. This discovery, reported by cybersecurity firm Aqua, reveals that the malware exploits weak passwords to access and compromise over 800,000 databases.
PG_MEM functions by attempting to crack weak passwords to gain entry into database systems. Upon successful access, it establishes a new user with elevated privileges and proceeds to install mining software. This software then connects to a mining pool, redirecting the database’s processing power toward cryptocurrency mining. Meanwhile, PG_MEM conceals its activities and prevents other potential hackers from breaching the system.
The phenomenon of cryptojacking, where malware covertly harnesses a computer’s resources for mining cryptocurrency, has surged significantly. Reports indicate a staggering 400% increase in such attacks during the first half of 2023, underscoring an urgent need for enhanced security measures.
In response to these threats, some firms are developing solutions like Aethir’s decentralized cloud infrastructure. By utilizing unused computing resources from data centers, these services aim to offer scalable and cost-effective computing solutions, thereby mitigating the risk of exploitation by malicious actors.
Related topics:
Florida Woman Sues Google Over $5 Million Crypto Theft
