When coin miners evolve, Part 1: Exposing LemonDuck and LemonCat, modern mining malware infrastructure | Microsoft Security BlogMicrosoft Security BlogLemonDuck, an actively updated and robust malware that’s primarily known for its botnet and cryptocurrency mining objectives, adopted more sophisticated behavior and escalated its operations. Today, beyond using resources for its traditional bot and mining activities, LemonDuck steals credentials, removes security controls, spreads via emails, moves laterally, and ultimately drops more tools for human-operated activity. Joli canard, il corrige même l'OS pour virer ses concurrents.
Sinon rien de nouveau, si il y a 20 ans on recevait des emails piégés avec des documents contenant une macro, aujourd’hui c'est du JavaScript.