“KashmirBlack” botnet is exploiting “dozens of known vulnerabilities” to target CMS systems. Hundreds of thousands of hijacked systems are spread across 30 countries. The botnet’s infrastructure is complex and comprises a number of moving parts, including two separate repositories. KashmirBlack’s primary purpose of KashmirBlack is to abuse resources of compromised systems for Monero cryptocurrency mining and redirect a website’s legitimate traffic to spam pages. But it has also been leveraged to carry out defacement attacks.
Source: https://thehackernews.com/2020/10/kashmirblack-botnet-hijacks-thousands.html