Guardicore cybersecurity experts: The malware uses indiscriminate port scanning and exploitation of exposed SMB services with weak passwords and hashes.
Guardicore Labs cyber security experts: Only in August the malware infected over 90,000 machines worldwide. It exploits brute force and EternalBlue for cryptomining.