Comment 27P Re: But Why Not Just Windows?

Story

Synology NAS Remotely Hacked To Mine $620K In DogeCoin

Preview

But Why Not Just Windows? (Score: 0)

by Anonymous Coward on 2014-06-21 12:19 (#27K)

Couldn't he have made far more using malware on traditional Windows PCs? Easy to infect, goes undetected for long periods, stupider users, etc.? NASes seem a pretty obscure and limited target.

I see a lot of Windows infections but haven'tnoticed any that do mining. Most still seem to be spam botnets and password stealers.

Re: But Why Not Just Windows? (Score: 3, Informative)

by pete@pipedot.org on 2014-06-21 14:19 (#27M)

my guess is that its a better target than windows due to lack of scrutiny - windows gets much attention on the virus/malware front, and thus the likelyhood of it being found sooner (plus heuristics - it only has to look like its mining or being sketchy to get flagged, even if it hasnt been seen or previously identified in the wild.) Perfect example being that nobody noticed anything except slow device speed - this could have gone undetected for years if the hacker were more careful. security through obscurity, right?

theres also a chance they bet that the synology team were not capable of noticing, diagnosing or fixing the malware. many devices these days get rare-to-nil firmware updates, even fewer people ensure they are actually applied, and its a beautiful hole to your internal network for other uses.

Re: But Why Not Just Windows? (Score: 3, Insightful)

by genx@pipedot.org on 2014-06-21 22:16 (#27P)

Also, NASes are more likely to run 24/24 than normal Windows PCs that the user will often switch off periodically (or will crash periodically :->).

Moderation

Time Reason Points Voter
2014-06-23 23:27 Normal 0 fatphil@pipedot.org
2014-06-21 23:45 Insightful +1 pete@pipedot.org
2014-06-24 20:37 Insightful +1 renevith@pipedot.org

Junk Status

Not marked as junk