Complex new cryptojacking botnet spreads stealthily across networks

There is a new cryptojacking botnet in town, designed to brute force into as many devices as possible and mine Monero (XRM) cryptocurrency on behalf of its operators.

According to researchers at Cisco Talos, the Prometei botnet has been active since March and uses a combination of living-off-the-land binaries (LoLBins) like PsExec and WMI, SMB exploits, and stolen credentials to move from one device to another.