2022年1月17日

Mining virus caused power waste Qi anxin launched the situation monitoring and response platform for mining

The power consumption of the data center room suddenly surged, while the server capacity was not expanded.

The CPU and graphics card usage of the server host and office computer remain high, and the application card is slow, which seriously affects normal services.

From 2 a.m. to 6 a.m., when the service is at its peak, the server consumption is abnormally high…

If any of the above situations occur, as the information center of the enterprise or the person in charge of network security, you need to be alert: your Intranet, computer room, and various devices are likely to be infected with “mining” virus. These viruses use vulnerabilities to remotely attack government and enterprise institutions, and make personal hosts, enterprise servers, cloud servers and other mining machines fall into “mining”, which become the profit-making tools of hacker gangs. Meanwhile, they consume valuable computing power and energy of enterprises, and produce a large number of carbon emissions, causing great harm.

On December 2nd, Relying on the advantages of security big data, whole network mapping, vulnerability response, threat intelligence and mining perception, Qi anxin launched the situation monitoring and response platform (CMSA platform) for butian mining. The platform can monitor and analyze the “mining” behavior on the Internet, helping government and enterprises to have a more comprehensive understanding of the overall threat and situation of “mining” behavior.

According to the monitoring data of BUtian CMSA platform, there are about 1.5 billion “mining” related events in China every day on average, and the peak value of active mining machines is nearly 200,000. Guangdong, Henan, Sichuan, Jiangsu, Shaanxi and other provinces with developed data industry or rich energy have become the main regions of “mining” activity.

Qi anxin security experts said, and different from professional mining pools, mines, mining virus seems to have a low power consumption, energy perception is not strong, but according to statistics, mining virus compared to professional “mining”, under the premise of obtaining the same calculation value, power consumption is 500 times the latter!

At the same time, because the mining virus is so widespread, the cumulative waste of electricity and carbon emissions would be staggering.

图: 补天挖矿态势监测响应解决方案
Figure: Situation monitoring and response solution for sky filling mining

The CMSA platform of Qi an Xin Butian helps customers conduct comprehensive, closed-loop monitoring and analysis of “mining” behavior from the three stages of discovery, evaluation and removal.

In the stage of threat detection, based on the threat intelligence information provided by butian CMSA platform, the “mining” behavior of the region, organization and asset under its jurisdiction is evaluated and the behavior situation is mastered. In the assistance evaluation stage, relying on threat intelligence information, assist to provide event brief, terminal number, time analysis, trend analysis, affiliated enterprises/units, geographic location and other reports for mining events of regions, organizations and assets. In the assisted clearance stage, it can coordinate with the issuing of supervision and disposal, continuously track the event results and access emergency response processing, so as to complete the closed loop of the event.

As is known to all, data, as the source of truth of threat attacks, is the premise and basis of situation monitoring and response. Therefore, all-factor data collection capability is the core of BUtian CMSA platform. At present, Qianxin has the industry’s leading accumulation of security big data, with a total of more than 20 billion samples in its behavioral sample database; The leading live web site library, with more than 10 billion searches a day; The total amount of top-level full domain name information base exceeds 40 billion; More than 2,000 open source intelligence sources; Butian Vulnerability response platform reported more than 750,000 vulnerabilities; The total amount of data in the super massive multidimensional database is more than 700PB.

The CMSA platform launched by Qi anxin will better cooperate with the national implementation of the special investigation and rectification of “mining” behavior, reduce the waste of “mining” energy and computing power, and make a positive contribution to promoting the national energy conservation and emission reduction, realizing the carbon peak and carbon neutrality goals.

Leave a Reply

Your email address will not be published. Required fields are marked *

Scroll Up