Tencent Security warns of a new hacking group that is installing crypto-miner malware on Microsoft SQL Servers (MSSQL). The hack, MrbMiner, has infected thousands of MSSQL databases with malware, which mines Monero cryptocurrency by abusing local server resources and generating Monero coins into the group's accounts.
- MrbMiner launches brute-force attacks against MSSQL servers with weak passwords.
- Tencent researchers found evidence that the MrbMiner group was also targeting Linux servers and ARM-based systems.
- MSSQL is the third most used database by developers in 2020, behind only MySQL and PostgresSQL.
This article first appeared in Inside Security, available ad-free with any Inside Premium membership. Give us a 14-day try free ($0!) for unlimited ad-free newsletters plus premium content.