There is a new cryptocurrency-mining botnet that arrives via open ADB (android Debug Bridge) ports and can spread via SSH, according to Trend Micro.
Android-based devices are susceptible to the malware due to the use of ADB. The attack exploits open ADB ports, and can spread from the infected host to any system that has had a previous SSH connection with the host. This exploitation is similar to the Satori bonnet.
According to ZDNet, many Android devices have the ADB developer function and command-line tool disabled by default, but some devices do ship with the feature enabled. If it’s enabled, the device is susceptible to the attack.
The link for this article located at Security Today is no longer available.