A hacker group known as Librarian Ghouls, also known as Rare Werewolf, has taken control of hundreds of computers in Russia to secretly mine cryptocurrency, according to a Kaspersky report on June 9.
The group uses phishing emails containing malicious files to gain unauthorized access to systems. These emails look like regular messages from real companies and often contain what appear to be invoices or official documents.
Once opened, the file installs malware that gives hackers remote access. From there, they disable built-in protections, such as Windows Defender.
Did you know?
Subscribe – We publish new crypto explainer videos every week!
What is an NFT? (Explained with Animations)
Kaspersky reported that the infected computers are programmed to turn on at 1 AM and shut down at 5 AM.
This quiet time window allows hackers to stay hidden while accessing the device, gathering passwords, and preparing it to mine cryptocurrency. The attackers also examine the system’s details, such as memory, processor speed, and graphics card, to configure the mining tool.
While mining is active, the device contacts the mining pool every minute to remain connected.
Kaspersky stated that the group also installs tools to stay connected to the machine long-term. Additionally, they often use fake websites to trick users into giving away their email account access.
The campaign began in December 2024 and is still ongoing. It has mostly affected Russian users, especially those at industrial companies and technical schools. A smaller number of victims have been found in Belarus and Kazakhstan.
Recently, the Mobile Threat Intelligence team at ThreatFabric reported that the Android malware Crocodilus is targeting banking and cryptocurrency users in several regions. How does it work? Read the full story.
Having completed a Master’s degree in Economics, Politics, and Cultures of the East Asia region, Aaron has written scientific papers analyzing the differences between Western and Collective forms of capitalism in the post-World War II era.
With close to a decade of experience in the FinTech industry, Aaron understands all of the biggest issues and struggles that crypto enthusiasts face. He’s a passionate analyst who is concerned with data-driven and fact-based content, as well as that which speaks to both Web3 natives and industry newcomers.
Aaron is the go-to person for everything and anything related to digital currencies. With a huge passion for blockchain & Web3 education, Aaron strives to transform the space as we know it, and make it more approachable to complete beginners.
Aaron has been quoted by multiple established outlets, and is a published author himself. Even during his free time, he enjoys researching the market trends, and looking for the next supernova.
