whatacart is cryptocurrency-malware
timlit opened this issue · 2 comments
You are criminals, because you're spreading cryptomining malware.
This is what i found in my logs. Screw you very much.
I will spread news about you.
ModSecurity: Warning. Matched phrase "m.js" at RESPONSE_BODY. [file "/etc/httpd/mod_security/trustwave_rules.conf"] [line "2977"] [id "2500005"] [rev "11272018"] [msg "SLR: Bomonero - Crypto-Mining Activity"] [severity "CRITICAL"] [tag "attack-crypto mining"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "https://www.trustwave.com/Resources/Trustwave-Blog/All-the-Ways-Cybercriminals-Are-Exploiting-the-Cryptocurrency-Boom/"] [hostname "*****"] [uri "/index.php"] [unique_id "ZucOkAAAAE"]
Where are you getting this? On whatacart website or after installing the application by using the source code from github. There is no such thing as cyrpto mining activity performed from our end. Where does the logs show the hostname as whatacart or whatacart installed application.
Closing this