Tencent Yujian: BuleHero mining worms upgraded to version 4.0, already 30,000 computers

On November 13th, Tencent Security Yuzhi Threat Intelligence Center detected the mining worm BuleHero upgraded to version 4.0 on November 11. In this update, BuleHero introduced the use of a variety of new vulnerabilities, including the module exploits involved in the "PHPStudy" backdoor incident announced by the Hangzhou police on September 20, 2019. According to the Tencent Security Threat Intelligence Center data, BuleHero mining worms currently infect more than 30,000 computers. The most affected areas are Guangdong, Beijing, Jiangsu, Shandong and other places. The most affected industries are the Internet and technology services. Trade service industry.