Crypto-Mining Malware Found on 4000+ Sites

[Decade_Later]

Over 4000 websites including several belonging to UK and US government agencies were found over the weekend to be running hidden crypto-mining malware.

Security researcher Scott Helme first investigated the website of the Information Commissioner’s Office (ICO) after a tip-off that AV filters were raising red flags.

“At first the obvious thought is that the ICO were compromised so I immediately started digging into this after firing off a few emails to contact people who may be able to help me with disclosure. I quickly realised though that this script, whilst present on the ICO website, was not being hosted by the ICO, it was included by a third-party library they loaded” he explained.

“If you want to load a crypto miner on 1,000 websites you don’t attack 1,000 websites, you attack the one website that they all load content from. In this case it turned out that Texthelp, an assistive technology provider, had been compromised and one of their hosted script files changed.”

It turned out that attackers had compromised a JavaScript file which was part of the Texthelp Browsealout product, adding malicious code which effectively installed the CoinHive miner.

Some of the sites affected by CoinHive included United States Courts, the General Medical Council, the UK’s Student Loans Company, NHS Inform and many others.


Continued at:... https://sikurblog.wordpress.com/2018/02/12/crypto-mining-malware-found-on-4000-sites/

[babyandreas]

Mining malware increasingly popular
Bad news

[andrew1carlssin]

...tip-off that AV filters..

ASIC phase killed mining botnets in 2013 ... I really don't understand those news ....

how much you can do with those zombie machines at

https://blockchain.info/charts/hash-rate


?  

[JamesR1]

very bad news for me because i am not a technical guy with programming experience & skills . the real question how these Crpto-Mining malware will affect me as regular user with basic skills ? please answer .

[Captain_Planet]

very bad news for me because i am not a technical guy with programming experience & skills . the real question how these Crpto-Mining malware will affect me as regular user with basic skills ? please answer .

Probably it will start using your browser for mining but instead of benefiting you whatever your browser mined, that website gains the profits. I hope I am correct in describing.

[lizardbtc]

After cryptocurrencies gaining more and more in popularity hackers grab opportinity to mine coins. It is funny actually when I read few weeks back that some people went that far to try to mine with Nuclear centre in Russia, few engineers there. Specially take into account that IOT devices are not very well protected such as TVs for instance and those could potentially be good and easy targets for hackers.

POW just say proof of work and that's all. You simply put random string and mine, nobody asks you who you really are etc. and this is why it is really trendy thing to try to obtain someones hardware to mine. We are going to see more of this for sure.

very bad news for me because i am not a technical guy with programming experience & skills . the real question how these Crpto-Mining malware will affect me as regular user with basic skills ? please answer .

They can if you are not carefull. My friend for instance got miner installed when he downloaded some game from piratebay and installed it. So just need to be carefull, spcecially if you are using windows OS. Simply try to have good antivirus software. Some websites even have hidden miners on their websites for these simply install addon that will block mining, or adblocker as some of them have installed feature to block mining as well.

[JamesR1]

After cryptocurrencies gaining more and more in popularity hackers grab opportinity to mine coins. It is funny actually when I read few weeks back that some people went that far to try to mine with Nuclear centre in Russia, few engineers there. Specially take into account that IOT devices are not very well protected such as TVs for instance and those could potentially be good and easy targets for hackers.

POW just say proof of work and that's all. You simply put random string and mine, nobody asks you who you really are etc. and this is why it is really trendy thing to try to obtain someones hardware to mine. We are going to see more of this for sure.

very bad news for me because i am not a technical guy with programming experience & skills . the real question how these Crpto-Mining malware will affect me as regular user with basic skills ? please answer .

They can if you are not carefull. My friend for instance got miner installed when he downloaded some game from piratebay and installed it. So just need to be carefull, spcecially if you are using windows OS. Simply try to have good antivirus software. Some websites even have hidden miners on their websites for these simply install addon that will block mining, or adblocker as some of them have installed feature to block mining as well.

I am using windows 10 operating system with sophos antivirus not using any adblocker at all , not enjoying install games or browsing pirate sites . one merit from me thank for helpful answer .

[dothebeats]

...tip-off that AV filters..

ASIC phase killed mining botnets in 2013 ... I really don't understand those news ....

how much you can do with those zombie machines at

https://blockchain.info/charts/hash-rate


?  

Bitcoin isn't the only crypto that can be mined. There are loads of them, and most of them utilize GPUs in order to generate coins.

It cannot cause the owner of the malware to be rich, but still it can damage machines that are affected by the said malware especially if it is run at an extended amount of item. Also, if the malware is capable of using your CPU/GPU/whatever into something nefarious, it also means that the owner of the malware know every single detail on your computer which can affect your privacy. There are a lot of risks associated with an infected machine, so yeah, this is still somewhat alarming.

[sashulya7979]

I will say so. Once I got on a site that was viral. I flew Windows and the Internet was tied to a computer purse. Of course, after I managed to go to my wallet back there was nothing. Take care of your friends.

[squatz1]

Pretty bad news for crypto, as it makes everyone look bad involved. Continues to fuel the narrative that bitcoin and the crypto community is dominated by scammers, drug dealers, criminals, thieves, etc. Though at least news like this came out so that the problem can be solved and peoples computers aren't be fucking for some people that want to make a small amount of money from each person infected.

Horrid shit though. Curious on how much these people made though, as I doubt they'd be able to make much if people didn't notice for too long while they browsed sites.

[rockyfeller]

Pretty bad news for crypto, as it makes everyone look bad involved. Continues to fuel the narrative that bitcoin and the crypto community is dominated by scammers, drug dealers, criminals, thieves, etc. Though at least news like this came out so that the problem can be solved and peoples computers aren't be fucking for some people that want to make a small amount of money from each person infected.

Horrid shit though. Curious on how much these people made though, as I doubt they'd be able to make much if people didn't notice for too long while they browsed sites.

This is bad for people who are into the Crypto mining industry, but ofcourse we are all affected by this malware not just them but us. The price will get affected, yeaah i'm curious tho bout the this guys are doing some shitty thing. I Should clean my browser and cookie sites it may attack by malware computers and it's dangerous.

[BTCLovingDude]

this is a strange news and the source of it is a blog post so it is hard to talk about its validity! it is hard to believe that UK and US government agencies websites have a altcoin mining script running on it without them knowing it already! and some random dude figures it out!

these scripts are not really something advanced and complicated. it is easy to detect and we are not talking about some low security website here with newbie admins.

[Joyceshiroor]

The price will get affected, yeaah i'm curious tho bout the this guys are doing some shitty thing. I Should clean my browser and cookie sites it may attack by malware computers and it's dangerous.