Crypto-mining malware has infected 23% of global organizations

An increasing threat gets challenging as the malware is put hidden in websites
19 February 2018   683

Check Point alarms the world of a steadily growing threat of crypto-mining malware. A leading provider of cyber security globally has compiled a list of top 10 prevalent threats. The first is Coinhive that during January 2018 has affected approximately 23 percent of organizations worldwide. Using Javascript the malware is implanted into website and with each user browsing the dangerous code drains users’ CPU and GPU resources to mine Monero cryptocurrency with their approval.

Over the past three months crypto-mining malware has steadily become an increasing threat to organizations, as criminals have found it to be a lucrative revenue stream

 

Maya Horowitz

Threat Intelligence Group Manager, Check Point

Ranked second is a malware Fireball. it is reported that as much as 21% of those organizations infected by the malware are yet to deal with the issue. The most serious point about Fireball is that the malware has a real potential to be transformed into a fully-fledged malware downloader capable of executing any code on the victim’s machine. The third rank was given to Rig Exploit Kit with 17% affected organizations globally.

As the popularity of the virtual currencies grows, so does the distribution was and methods of the associated malware. Usually, the exploit is injected in popular media websites, as reported by Cyberscoop of media outlet Salon using its own ad-blocker as a hidden tool for mining Monero. On top of that, last week Kaspersky Lab. reported of a zero-day vulnerability of Telegram desktop client. The vulnerability makes users to download a hidden malware, that potentially can be a mining code. This threat is reported to be active since March, 2017.

Another notable instance of an infection was reported by UK about a plugin for blind people Browsealoud.

Chinese Hackers Hiddenly Mined $2M

Hackers built hidden miner into plug-ins for the Internet browser - for example, to improve the speed of the Internet
10 July 2018   241

Chinese hackers were able to mine hiddenly $2M worth  cryptocurrency in 2 years. 1M devices were infected. This is reported by CoinDesk.

According to one local media, police in the Chinese city of Dalian arrested 20 employees of a computer firm who are suspected of illegally taking control of a large number of computers for illegal crypto-mining.

Hackers created a malicious program and built it into plug-ins for the Internet browser - for example, to improve the speed of the Internet - and promoted it through advertising, which was shown to 5 million users.

After the user clicked on such an advertisement and installed the plugin, his computer became infected. As a result, according to the police, malware was downloaded to more than 1 million computers, which for 2 years mined 26 million tokens of Digibyte, Decred and Siacoin.

In addition, hackers created a network of more than 100 agents to promote their illegal mining network-for example, through working relationships in the internet cafes.