Magandang umaga mga kababayan ako nanaman po ay nagbabalik with another security lesson sa inyu wahahah ok sa mga nakakadaan sa thread ko maraming salamat sa sa mga walang pake sa mga threads ko wahahah I am just teaching for your good and safety and most of all for your security mahirap mawalan ng pera lalo na ung pinaghirapan mo ok so ang taopic ko nung nakaraan ay about sa pagsetup ng secure computer
![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif)
sa mga di nagbasa itu po
https://bitcointalk.org/index.php?topic=3477858.0ung before that is about
ETH PRIVATE KEY GENERATOR bellow is the link
https://bitcointalk.org/index.php?topic=3427504.0so ung topic for today is about the thing called
MINER VIRUS but I called
MINER EXPLOITso before ko simulan lahat ng tinuturo ko is ginagawa ko for good and before posting I test it so walang dahilan para sabihing nonsense ung mga thread ko ok
![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif)
so let's start.
CRYPTO MINER EXPLOITED YOUR COMPUTER WITHOUT YOU EVEN KNOWING!!!
So una para maintindihan niong mabuti anu ba ang crypto mining so un ung way to get bitcoins or cryptos using hardware power like GPU or CPU power so not go so much about that so
Everyone familiar with monero right? so Monero is a crypto currency used online so in trading and monero has this great security features kaya tinatangkilik sia so may way to mine Monero there are like this GPU mining which is common and then the JS or Javascript miner so in short this java script use your computer CPU power to mine monero
![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif)
the problem is that this script has been use by hackers to mine monero without damaging thieir computer so how they do it?
1.
EMBED THE SCRIPT IN THEIR OWN WEB SERVERuna gumagawa sila ng website nila which is a dummy website with that script uploaded so once i run sa browser ung script is magmine na itu ng monero
![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif)
so the bad things here is that you can't even tell if the website was affected or use with this script
![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif)
so the thing is that to track this is
OPEN TASK MANAGER and look if your process runs almost 100% this is bad thing if you stay 24-7 with this very high usage of computer una mataas sa kuryente pangalawa maaring makasira ng computer.
2.
USE A MAN IN THE MIDDLE ATTACK TO USE MULTIPLE HOSTso I already explained the MITM so the process are the same so what if the attacker don't found useful victim in the network? ang ginagawa nila is ginagamit nalng nila ung mga host na nakaconnect sa network para gawing mga minero wahahaha so that's real po ok kumita sila easy diba so walang alam ung mga tao kasi di kila nagclick ng malicious links and other stuffs how come? the attacker just inject the the javascript on how to do that di ko na eexplain.
3.
EXPLOIT WORMok ditu sa method na ito pinagsama ung 1 and 2 ok how ok un na nga na mitm ka na directed ka sa site nila bigla may script n nagrurun sa website na un na mag download ng browser extension sa browser mo then mag rurun bigla ng another script to hiddenly install the application that will be running hidden so un then after nun every time you boot up your computer then it will run the application mining the monero for the attacker and he/she is sitting pretty earning crypto easy
![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif)
ok now how youu see this?? ganun padin track mo sa task manager mo ung task na ang laki ng kain sa memory at process then end mo
![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif)
IMPORTAN REMINDERS!!1.install an up-to-date antivirus
2.use a secure DNS
3.always track of frequently track your process
4.the risk of this virus or exploit is actually this can destroy your computer if you don't take action fast
5.trust the site you are navigating and then use a browser that actually has a capability to run,block and check javascript I use TOR browser since it has this NoScript
so un palang ung way ko para ma prevent sia then ok
as what I always say "Stay safe, stay secure you hold your security"
~SnowAngel