Security researcher at Cyberreason now warns that the botnet Prometei is being used for a campaign that seeks to exploit vulnerabilities in unpatched Microsoft Exchange servers, reports Zdnet.
Prometei tries to recruit the servers to the botnet, which in turn is used to dig for cryptocurrencies. But the botnet has so much access to the servers that much more serious cyber attacks could be carried out. For example, the installation of ransomware.
So far, the botnet has managed to find victims in a number of different operations in Europe, North America, South America and East Asia.
There are leases for Microsoft Exchange Server that protect against the botnet, but Prometei takes advantage of the fact that many have not yet updated their servers.
Also read: State-sponsored hackers exploit vulnerabilities in popular VPN service
– .
