XMRig is an endpoint cryptomining malware capable of doing damage without an active browser session, and its use is on the rise.
- A new cryptomining malware, XMRig, is doing something that previous strains haven't: It can operate without an open browser session.
- Cryptomining malware is the hot new threat, and it's adapting. Security professionals need to be careful not to rely on old methods to protect their systems.
Antimalware company Check Point has released their latest
Most Wanted Malware report for March, and it's warning of a surge in cryptomining malware attacks driven by the XMRig malware.
Cryptomining malware, which uses the computing resources of an infected machine to mine cryptocurrency on behalf of the attacker,
has been booming in the past several months, both on PCs and
mobile devices. What makes XMRig worthy of particular attention is that it signals a departure from previous cryptomining malware models, which have generally required an open browser session.
XMRig is endpoint malware, meaning it infects the target machine and can operate without an active browser session, a shift which spells trouble for security professionals.
"Cryptomining malware has been quite the success story for cybercriminals, and XMRig's rise indicates that they are actively invested in modifying and improving their methods in order to stay ahead of the curve," Maya Horowitz, Check Point's threat intelligence group manager, said in the report.
Malware bypassed macOS Gatekeeper by abusing Apple's notarization proccess
New Rust Based InfoStealer Extracts Sensitive Data from Chromium-based Browsers
Fake Google Chrome errors trick you into running malicious PowerShell scripts
Reporting on ZoneAlarm Improvements
Cisco AMP Endpoint Antivirus 2025