Cryptojacking leads online threats: report

Posted: 18 April 2018 1:00 pm
online security threat small

Monero has overtaken bitcoin as the most popular illicit digital currency to mine.

Over the first quarter of 2018, digital currency mining malware eclipsed ransomware attacks, according to the latest research report. Plus, new developments in malware are happening first in the cryptomining sector.

Comodo Threat Research Labs’ latest report reveals that cryptomining cybercriminals “followed the money and sought to cash in on the whopping increase in cryptocurrencies’ valuation” that began in December 2017.

How does it work?

Attackers break into websites to covertly install cryptominers — malware that uses resources of the visitors’ computers to mine cryptocurrencies for the benefit of the perpetrators, according to Comodo’s report.

Many world-known and respectable companies’ websites were compromised during these attacks in Q1 2018. The report also reveals that Monero has overtaken bitcoin as the most popular illicit virtual currency to mine.

Ransomware vs. cryptomining

In previous quarters, ransomware attacks led the malware market and while they were still a significant threat in Q1 2018, there has been a sudden decrease in the number of overall detections, down from 42% of all malware cases in August 2017 to just 9% of cases in February this year, yielding to cryptomining offenses.

Comodo detected 28.9 million cryptomining incidents out of a total of 300 million throughout Q1 2018. This amounts to around 10% of all incidents. The number of unique cryptominer variants grew from 93,750 in January to 127,000 in March, up 35% over the quarter.

Concurrently, the data revealed that new variants of ransomware activity fell from 124,320 in January to 71,540 in March, slipping 42% over the same period.

Source: Comodo Threat Research Labs Cybersecurity Report Q1 2018

Cryptominers primary target during 2016 and most of 2017 was bitcoin. However, following the price explosion and increased market value of alternative cryptocurrencies, attackers began seeking other coins. Additionally, the report found that bitcoin mining has become more resource-intensive, transactions are open to the public and can be tracked easily, plus suspicious bitcoin wallets can be blacklisted and permanently blocked.

Monero is now the most sought-after cryptocurrency. It favors cybercriminals in that it cannot be tracked, parties and transaction amounts are hidden, new blockchain blocks are created every two minutes, providing more frequent opportunities for attack, and its tokens are designed to be mined using ordinary computers.

The most popular mining malware includes Coinhive, Crypto-Loot, Archive Poster, GhostMiner and CoinMiner.

“We believe that increase in miner malware will continue in the next quarter. Also, attackers will go on switching to malware for cryptocurrencies other than bitcoin,” Comodo Threat Research Labs warned readers.

A recent study revealed that approximately 1 in every 7,000 websites are running some sort of cryptocurrency mining script that underhandedly saps your computer’s processing power in order to dig for digital coins.

The rapid advancement of illegal cryptocurrency coin mining was considered a leading trend in the internet security landscape last year, according to the latest cyber surveillance insights report released this month. The Internet Security Threat Report (ISTR) Volume 23: Insights into the Cyber Security Threat Landscape found that in just four months, detections of coinminers on endpoint computers increased by 8,500% in 2017.

Last month, cybersecurity provider Kaspersky Lab reported that researchers had uncovered malware attacks being executed on cloud-based instant messaging service Telegram, for the purpose of illicit cryptocurrency mining. It was also reported that American electric energy car manufacturer Tesla fell victim to “cryptojacking”.

In March, lighting company Elite Fixtures conducted a study of global bitcoin mining costs to determine the cheapest countries in which to mine the elusive cryptocurrency. Venezuela was found to be the cheapest.

Earlier this year, Samsung Electronics entered into a contract to manufacture specific-use cryptocurrency mining hardware in order to supply a Chinese company, growing competition in a monopolized market.

In January, Virginia Beach pledged $500,000 to help install a bitcoin mine, expected to generate local jobs.

You can learn all about different exchanges, understand exactly how to buy and sell cryptocurrencies, calculate your taxes, discover digital wallets to hold assets and explore a list of all the alternative coins on the market.

Disclaimer: This information should not be interpreted as an endorsement of cryptocurrency or any specific provider, service or offering. It is not a recommendation to trade. Cryptocurrencies are speculative, complex and involve significant risks – they are highly volatile and sensitive to secondary activity. Performance is unpredictable and past performance is no guarantee of future performance. Consider your own circumstances, and obtain your own advice, before relying on this information. You should also verify the nature of any product or service (including its legal status and relevant regulatory requirements) and consult the relevant Regulators' websites before making any decision. Finder, or the author, may have holdings in the cryptocurrencies discussed.

Latest cryptocurrency news

Picture: Shutterstock

Ask an Expert provides guides and information on a range of products and services. Because our content is not financial advice, we suggest talking with a professional before you make any decision.

By submitting your comment or question, you agree to our Privacy and Cookies Policy and Terms of Use.

Questions and responses on are not provided, paid for or otherwise endorsed by any bank or brand. These banks and brands are not responsible for ensuring that comments are answered or accurate.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Go to site