February 28, 2018 — 10 min read
Black Ruby: Combining Ransomware and Coin Miner Malware
In the midst of all the news and hype surrounding cryptocurrency, we’ve seen several coin miner malware programs popping into the wild, infecting a number of computers on the internet. There’s been an upsurge in coin miner malware that victimizes individual PCs and businesses using the same techniques and exploits that were previously attributed to distributed ransomware. With all this happening, the cybersecurity industry started speculating that there is a shift from ransomware to coin miners as the preferred choice of payload for cybercriminals.
Interestingly, we found a new ransomware called Black Ruby that adds coin mining as a module on top of its ransomware capabilities.