Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Malicious ads dig virtual money right on the browser
The author of the malicious code uses JavaScript code transmitted via malvertising and digs a lot of digital currency on the user's browser without them knowing.
This technique is currently being exploited on Russian and Ukrainian websites but bad guys are also planning to expand to other areas.
Ads malicious on game and streaming sites
Bad guys take advantage of online advertising companies that allow advertising to be exploited with custom JavaScript code. It is a modified version of MineCrunch (also known as Web Miner), a script launched in 2014 that can dig virtual money with JavaScript code running inside the browser.
Virtual money digging is very expensive and will slow down the user's computer. To avoid suspicion, the bad guys spread the malicious ads mainly on the video or game streaming sites in the browser.
Both types of sites use a lot of resources and users will not be suspicious when their computer is a bit slow. Moreover, users also tend to stay longer on games or video stream sites, allowing digging and making profits for bad guys.
Monero, Zcash money digging tools and many other virtual currencies
ESET, the security company that discovered the malicious ad, said that JavaScript digging scripts can dig Monero, Feathercoin and Litecoin.
The bad guys seem to only have to use the Monero digging feature, the configuration for the Litecoin digging tool is left blank while Feathercoin is set by default, using the same Feathercoin address as on the demo page on GitHub. https://kukunin.github.io/webminer/
In addition, the researchers also found another campaign to conduct Zcash digging, apparently by another group. They do not use malicious ads but host JavaScript digging code right on the page. It is unclear whether this page is hacked or if the admin of the site knows the Zcash digging tool is hosted on its domain.
Digging virtual money when accessing net wotsite [.] Page
Based on DNS Lookup numbers for domains associated with the Monero digging campaign, ESET believes that the malicious ad domain receives a lot of DNS Lookup traffic like GitHub's Gist service.
Ad blocking tools can prevent JavaScript digging
The good news is that users can protect themselves from the JavaScript-based digging tools hidden in the code with ad blocking tools. The mining will stop when the user leaves the site and does not need any other cleaning tools to remove the malware from the computer.
- How to block ads when surfing the web
- 9 effective ad blocking tools for faster browsing
The ad blocking tool will not help if the code digs with JavaScript loaded from outside the selected domain or ad slot - the case of the website host and download the script from their own domain.
This is not the first time
The mining tool on the browser is nothing new. Services like Bitp.it have tested it since 2011 but eventually collapsed. In 2015, the company called Tidbit provided website owners with a way to dig virtual money on visitors' machines. Authorities think that this is illegal, no different from hacking because Tidbit or website owner does not ask the user to perform that action.
Digging virtual money is an attractive business for malware owners. According to a recent report, at least 1.65 million computers are infected with malware digging virtual money this year.
David PacYou should read it
- VNCERT issued an emergency alert warning malicious code exploiting Coinhive virtual money
- Warning: a new variant of the virus that fills virtual money via Facebook Messenger will appear every 10 minutes
- New malware-digging tool on Linux devices
- Hacker hijack CoinHive DNS to dig virtual money with thousands of websites
- The malware owner earned $ 63,000 from digging Monero on the IIS server
- History of digging a bitcoin, from a regular CPU to an ASIC system
- Warning: New variants of malicious code digging on Facebook threaten users in Vietnam
- Samsung produces dedicated chips to dig virtual money
May be interested
- Warning: New variants of malicious code digging on Facebook threaten users in Vietnam
bkav has issued a warning about the emergence of a new variant of the virtual money code spread via facebook, w32.fbcoinminer that is threatening users in vietnam. - The Opera 50 browser can block websites that dig money from encryption from user machinesopera 50 web browser the new release candidate has been announced by opera software not only to improve integrated vpn service, but also to prevent pre-coding, can prevent virtual money digging machines from invading your cpu. to dig coding money while browsing the web.
- Now even YouTube ads use CPU viewers to dig virtual moneyads bring profits to attackers while users naively watch videos on youtube.
- What is Cryptojacking and how to combat this malware?cryptojacking is a new way of using criminals to make money with your hardware. when opening a website in your browser, cryptojacking malware can use the cpu to the maximum to exploit cryptocurrency and it is becoming increasingly popular.
- After WannaCry, Petya's 'extortion' malicious code is raging, this is a remedy to preventthe 'blackmail' malicious code called petya, which appeared under the new version of petrraprap, is similar in effect to the wannacry malicious code, causing the computer system of many multinational companies to be shattered. according to the initial record, these first countries infected with malicious code include ukraine, russia, britain and india.
- How to block websites using your CPU to dig virtual moneychances are, websites are using your computer's cpu to dig virtual money without you knowing. if you want to avoid this situation, here is a guide to block the website of virtual money digging through the browser by cpu.
- The Chrome gadget secretly exploits virtual money, making it slowaccording to windows latest, after installing archive poster, an extension (extension) to support tumblr social network on google chrome browser, it will run in the background and secretly use computer resources to dig up monero causing the computer to run slowly.
- Discovery of Trojan scattering steals virtual money through YouTubea phishing campaign and malware transmission are being conducted through youtube.
- Asus produces virtual money digging boards that support up to 20 GPUsa whole 'farm' digs virtual money just on a circuit board. this board is capable of supporting up to 20 graphics cards with the same connection when allowing usb cable to plug directly into the printed circuit board (pcb) via the pcle port.
- 5 super fast ways to stop digging virtual money on web browserwhen mining cryptocurrency becomes popular, website owners use cryptocurrency mining scripts to use the visitor's cpu power to make a profit. so this article will introduce you to some methods of preventing cryptocurrency exploitation in web browsers.
Attack the network
- Ransomware 'Your Windows has been banned' extorting users with a face value of 50 USD Bitcoin
- New bank trojan detection on Android Red Alert
- Hackers can steal data from the Air Gap network computer using Camera IR CCTV
- Chinese antivirus applications secretly collect user data
- New ransomware appeared not to send Bitcoin, money, but ... nude photos !!!
- Google tested the top 5 browsers, Safari results with the most security flaws
Ransomware 'Your Windows has been banned' extorting users with a face value of 50 USD Bitcoin
New bank trojan detection on Android Red Alert
Hackers can steal data from the Air Gap network computer using Camera IR CCTV
Chinese antivirus applications secretly collect user data
New ransomware appeared not to send Bitcoin, money, but ... nude photos !!!
Google tested the top 5 browsers, Safari results with the most security flaws