9 Tips for Avoiding Tax Season Cyber Scams 
Sonova Shares Slip as Hearing Aid Giant Lowers Growth Outlook and Plans Sennheiser Exit 
Elon Musk Announces Terafab: SpaceX and Tesla to Build Dual AI Chip Factories in Austin, Texas 
Merck's $6 Billion Bid for Terns Pharma Signals Bold Oncology Push 
FxWirePro- Major Crypto levels and bias summary 
SpaceX IPO Filing Expected This Week as Valuation Could Surpass $75 Billion 
Jeff Bezos Eyes $100 Billion Fund to Transform Manufacturing With AI 
OpenAI Pulls the Plug on Sora, Ending $1 Billion Disney Partnership 
CK Hutchison's Panama Ports Dispute Escalates as Arbitration Claims Surpass $2 Billion 
Goldman Sachs Raises ECB Rate Hike Forecast Amid Persistent Energy-Driven Inflation 
Golden Dome Missile Defense: Anduril and Palantir Join Forces on Trump's $185B Space Shield 
Alibaba Bets on AI Agents to Unify Its Vast Digital Ecosystem 
AWS Bahrain Region Disrupted by Drone Activity Amid Middle East Conflict 
Hackers are exploiting auto-reply emails from compromised accounts to distribute XMRig crypto mining software, targeting Russian businesses and banks, cybersecurity firm Facct reports. This method tricks victims into initiating contact, making malicious emails appear trustworthy.
Cointelegraph elaborates that cybersecurity researchers have uncovered a new tactic by hackers: using automated email replies to conceal their crypto mining software.
Hackers Use Auto-Replies to Spread XMRig Crypto Miner
Hackers hit Russian businesses, marketplaces, and banks via auto-reply emails sent from hacked accounts, according to researchers at threat intelligence firm Facct.
In order to mine digital assets, the attackers used this approach to install the XMRig miner on their victims' devices.
According to the security firm, 150 emails with XMRig have been detected since May's end. However, the cybersecurity company also boasted that its email defense system warded off any harmful messages that might have reached its customers.
Victims Unknowingly Communicate with Hacked Accounts
According to Facct senior analyst Dmitry Eremenko, the method of delivery is risky since possible victims start the conversations. Email recipients typically have the choice to disregard communications they do not find relevant when using conventional mass delivery methods.
Victims of auto-replies, on the other hand, mistakenly believe they will hear back from the original sender of their email, even though the compromised account is actually communicating with someone else.
Cybersecurity Training and Strong Authentication Essential
Companies should regularly teach their personnel to expand their awareness of cybersecurity and current risks, according to the cybersecurity firm. Strong passwords and multifactor authentication should be implemented, the business emphasized.
An authentic open-source program that can mine the Monero coin is the XMRig. On the other hand, since 2020, hackers have been installing the program into various systems using a variety of ways, integrating it into their attacks.
