A group of Monero cryptojacking hackers called ‘Outlaw’ have made their return and are reportedly targeting businesses in the U.S. and Europe.
According to a report published Monday by Japanese cybersecurity firm Trend Micro, the group has begun hijacking Linux-based systems in order to force them into mining cryptocurrency. The report claims that Outlaw had originally gone silent since last June, before making a resurgence in late December.
Trend Micro reports that Outlaw has updated its previous hacking kit, expanding its scanner parameters and targets with “improved evasion techniques.” The group has also improved its mining profits by doing away with competing cryptojacking groups and previous miners.
The security firm’s analysis says the hacking kits were designed to steal information from the automotive and finance industries, as well as launching subsequent attacks on already compromised systems.
We think Outlaw may be aiming to go after enterprises that have yet to update their systems, assessing security and changes with their previously infected hosts, finding new and old targets, and possibly testing their updates in the wild.
While Outlaw was previously confined to hacking Chinese-based computer systems, Trend Micro says the group has expanded to U.S. and European businesses.