Nearly 50K websites infected with cryptocurrency mining malware, research finds

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Criminals have been injecting websites with scripts to mine the Monero cryptocurrency.

  • Nearly 50,000 websites were found to host some type of cryptocurrency mining malware. — Bad Packets report, 2018
  • 5,541 WordPress websites were infected with malware as part of cryptojacking campaigns. — Bad Packets report, 2018
In an investigation by Troy Mursch, the author of the Bad Packets Report, nearly 50,000 websites were found to host some type of cryptocurrency mining malware.

Cryptocurrency mining is becoming an increasingly lucrative industry as speculation of digital currencies such as Bitcoin, Ethereum, and Monero have driven up valuation. In the case of Monero, which is more easily capable of being mined on CPUs rather than GPUs, website owners have taken to embedding JavaScript-based mining scripts in order to generate revenue in place of, or in addition to, traditional advertisements.
Click to expand...

While some websites provide an opt-out mechanism for mining, many websites do not. As cryptocurrency miners are frequently configured to max out the CPU capacity of a given device—to the extent that devices have been physically damaged—performing cryptocurrency mining via scripts embedded on web pages is inherently parasitical regardless of the intent of the website owner.
Click to expand...

As surreptitious coin mining operations, also known as cryptojacking, are becoming increasingly popular among criminals, proactive protections to safeguard against these attacks are necessary. Mursch recommends the minerBlock extension for Chrome and Firefox. Cryptojacking is blocked by default in Opera, and MalwareBytes, a popular anti-malware program, blocked Coinhive shortly after the website launched in September 2017.

Web-based mining attacks are only one component of criminals mining the Monero cryptocurrency in malware attacks. Attacks targeting Android devices, Microsoft Word documents, and Telegram were discovered last month, and criminals have also recycled the EternalBlue vulnerability developed by the NSA to create the mining botnet "Smominru."
Click to expand...
 
  • Like
Reactions: harlan4096
You must log in or register to reply here.

Similar threads

vtqhtr413
    • Like
    • HaHa
Crypto Opinions & News Hacker spins up 1 million virtual servers to mine crypto
Replies
1
Views
367
Crypto News
MuzzMelbourne
MuzzMelbourne
[correlate]
    • Like
Security News Warning: Poorly Secured Linux SSH Servers Under Attack for Cryptocurrency Mining
Replies
0
Views
784
Security News
[correlate]
[correlate]
silversurfer
    • Like
    • +Reputation
Verblecon malware loader used in stealthy crypto mining attacks
Replies
0
Views
893
News Archive
silversurfer
silversurfer

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top