Ransomware developers shift to Web miners

It's far easier to use mining scrips than to exploit vulnerabilities in visitors’ software to infect them with malware.
  • Five years ago, malicious blockers were the ransom scam du jour. They displayed unwanted images on victims’ screens, preventing them from accessing systems and files, then demanded ransom in the form of a paid SMS message sent to a premium phone number.
  • This was impractical for criminals, as telecom companies took half the loot, numbers could be blocked and there was a huge risk of being caught when cashing out.
  • Today, cryptocurrencies allow ransomware attacks to flourish unabated. While bitcoin is not actually all that anonymous, coins such as Monero and Zcash allow cybercriminals to extort ransom fees without fear of being tracked. Kaspersky Lab attribute this year’s unprecedented spread of ransomware to this easy monetization process.
  • Trojans for stealing a victim’s CPU resources to mine cryptocurrencies on behalf of a criminal are equally as popular. Kaspersky say victims should “consider themselves lucky if their computers are merely used for covert mining, with no encrypting of valuable data”.
  • Throughout the first eight months of 2017, Kaspersky say their products protected 1.65 million users from malicious miners, and they expect this figure to exceed 2 million by the end of the year.
  • While malicious miners were initially deployed inside software, now that miners can simply be embedded in a website there has been a sea-change in online money-making rackets.
  • For instance, rather than using CAPTCHAs just to filter out bots, it would be more profitable to make use of those bots for mining. A real person or a bot both mine equally well. Some sites have even foregone banner ads altogether and solely rely on Web miners for income.
  • It is also far easier to use mining scrips than to exploit vulnerabilities in visitors’ software to infect them with malware.
  • Alexey Malanov of Kaspersky predicts that consequently, 2018 will likely be “the year of malicious Web miners,” because that’s where the smart (and quick) money is for malware developers.

So you Think Shes Cheating on You - Put Your Mind at Rest With FlexiSPY (728x90)

Be the first to comment

Leave a Reply

Your email address will not be published.


*