Beware of New Cryptomining Malware Delivered Using TeamViewer Accounts

The Huntress team examined EDR telemetry from the affected endpoint to discover abnormal activity before creating the Windows service.

They then searched through available EDR telemetry across all Huntress customers to find other affected endpoints.

The team discovered one system where similar activity was noticed, but no associated detection or alert was detected.