An unknown threat actor is using a vulnerability in Samba installations to take over Linux machines and use them as pawns in a vast cryptocurrency mining operation. Attackers made at least $5,400 in Monero using the Monero mining tool called EternalMiner. At the time of writing, researchers said the attacker made 98 Monero, which is around $ 5,400 at today’s price. Attacker hard-coded his Monero wallet address inside the source code of the mining tool.
Source: https://www.bleepingcomputer.com/news/security/linux-servers-hijacked-to-mine-cryptocurrency-via-sambacry-vulnerability/