Emergence of PG_MEM Malware Targeting PostgreSQL Databases
A newly identified malware, dubbed PG_MEM, has emerged as a significant threat to PostgreSQL, one of the most widely utilized database systems in the online landscape. This malware exploits vulnerabilities associated with weak passwords, allowing it to infiltrate databases and install software designed for cryptocurrency mining, thereby jeopardizing the security of over 800,000 databases.
According to Aqua, a prominent cybersecurity firm, PG_MEM employs brute-force techniques to guess passwords, gaining unauthorized access to databases. Once inside, it creates a new user account endowed with elevated privileges, facilitating the installation of mining software that connects to a mining pool.
This insidious operation enables the compromised database to leverage its computing resources for cryptocurrency mining while simultaneously masking its presence. Furthermore, PG_MEM actively obstructs other potential hackers from breaching the system, making it a particularly stealthy threat.
The phenomenon of cryptojacking, where malware covertly utilizes a computer’s processing power for mining activities, has seen a staggering increase, with reports indicating a 400% rise in such attacks during the first half of 2023. This alarming trend underscores the urgent need for enhanced security measures to defend against these evolving threats.
In response to the growing risk posed by malware like PG_MEM, various companies are stepping up to offer innovative solutions. For instance, Aethir has introduced a decentralized cloud infrastructure that capitalizes on unused computing resources from data centers. This approach not only provides cost-effective and scalable computing services but also mitigates the risk of exploitation by reducing the available attack surface.
Also Read: Styx Stealer Malware Targets Cryptocurrency Users
