Interpol has secured over 20,000 routers from attacks by crypto-miners
The International Criminal Police Organization, also known as Interpol, has engaged cybersecurity firm Trend Micro to fight hidden miner attacks on routers in the Southeast Asia region.
“We are proud to announce that we took part in another successful operation with the Interpol Global Innovation Complex (IGCI) in Singapore, which resulted in a 78% decrease in the number of users infected with hidden mining malware,” the report says. Trend Micro press release.
According to the company, measures to combat hidden mining were implemented by Interpol as part of the Goldfish Alpha operation. She has developed a methodological document that explains how a vulnerability in home and office equipment leads to the infection of thousands of routers in Southeast Asia. According to Interpol’s own press release, the operation took place in Brunei, Cambodia, Indonesia, Laos, Malaysia, Myanmar, Singapore, Thailand, Vietnam and the Philippines.
“During the five months Operation Goldfish Alpha lasted, experts from the Computer Incident Response Team (CERT) worked with police in 10 countries to identify infected routers, notify their users, and used a guidance document to fix bugs and eliminate hackers.” Trend Micro writes, adding that in total more than 20,000 compromised routers were detected.
The vulnerability was present in all MikroTik routers using the manufacturer’s own software RouterOS, including devices equipped with 72-core processors. According to Trend Micro observations, attackers mined Monero cryptocurrency on infected devices, which, with the recent transition to the RandomX algorithm, has become more friendly to mining on the CPU..