Symantec: Many website inserted Cryptocurrency Mining Script
In recent years, along with encryption currency prices are constantly pushed, hackers also played a crooked brains to profit. According to a report released today by Symantec, there is a tendency for public websites to be hacked into mining scripts to become more serious. Once run, these scripts cause the guest machine’s CPU resources to be heavily consumed for a long time. Encrypted currency is clearly more profitable than traditional malware. Often, anti-virus tools recognize and prevent similar programs. As a result, Symantec has been able to portray a “global offensive map” of malicious mining scripts.
According to Symantec, in recent weeks, the mining program has an increasing trend. Most of these scripts are related to Menero – because algorithms are “friendlier” to the CPU – not to Bitcoin or Ethereum.
In late November alone, the company tested and cleared 3 million daily checks when the Monroe dollar started to rise above $ 200. But as of December 16, the digital currency has risen to 350 dollars.
In terms of price movements, most of the digital currencies are aligned with “Boss” bitcoin. The most popular hacking background mining script is the rise of Coinhive in September this year.
Although many security companies quickly put pressure on it, the official website of Coinhive did not disappear but changed the “choose to join” the door. In addition, Symantec’s research shows that the original plug-in is still active.
Due to the mining nature of cryptocurrencies, this plugin can run in the background for a long time. In order to get more revenue, hackers most like to find streaming media site to start. But in many cases, the owner of the site does not know.
In September of this year, the foreign media reported that two backstage platforms were implanted into Coinhive’s live rooms, and even appeared in the form of “Chrome browser extensions.” In addition to pirate sites for purposeful increase revenue, but also short-term installation of mining procedures.
Even worse, hackers have not let go of mobile devices. Symantec has discovered many Android apps with mining scripts – despite the limited CPU performance, mining is not efficient at mining mobile devices.
Since 2017, Symantec has discovered 35 different Android mining applications, an increase of 34% over last year.
Reference: Symantec
