Cryptojacking eller ondsindet kryptominering^{(malicious cryptomining)} er et nyt trick, der bruges til at mine kryptovalutaer^{(Cryptocurrencies)} på en brugers computer ved at bruge deres CPU- ressourcer i baggrunden uden deres viden. Typisk indlæser den cyberkriminelle et script i ofrets webbrowser, som indeholder en unik webstedsnøgle for at tvinge brugeren til at berige dem.

Hvis du kæmper med en langsom pc eller internetforbindelse, skal du ikke bare give leverandøren eller tjenesteudbyderen skylden endnu, fordi du kan blive offer for et nyt trick, som hackerne bruger, kaldet browser Cryptojacking .

Udviklingen af ​​Cryptojacking tilskrives den stigende interesse for Cryptocurrencies i de sidste par måneder. Se på Bitcoin for de sidste par måneder eller deromkring, og dens værdi er steget med mere end 1.000 %. Dette har også tiltrukket sig opmærksomhed fra hackere og har derfor affødt farlige metoder såsom Crytptojacking .

Hvad er Cryptojacking

Fremkomst^(Emergence)

Før vi forstår, hvad Cryptojacking er, skal du først fortælle os om Cryptomining .

Cryptomining eller Cryptocurrency Mining er den proces, hvorved en kryptovaluta opstår ved hjælp af blockchain-teknologien. Cryptomining lader også nye cryptocurrency-mønter frigives på markedet. Minedrift^(Mining) udføres af visse ligestillede i kryptovaluta-netværket, som konkurrerer (individuelt eller i grupper) om at løse et vanskeligt matematisk problem, kaldet proof-of-work

I september 2017 debuterede Coinhive på markedet og tilbød at udvinde kryptovalutaen kaldet Monero ( XMR ). Coinhive tilbyder grundlæggende et stykke kode skrevet i JavaScript , som webstedsejere blot kan indlejre på deres websted. Coinhive introducerede en ny forretningsmodel for webstedet, der hævder, at webstedsejere kan fjerne annoncer fra deres websteder og indlæse Coinhive i stedet.

Når brugere får adgang til et websted med Coinhive indlejret, starter Coinhive^(Coinhive) processen med kryptomining på vegne af webstedsejeren ved at bruge brugersystemressourcer (det er derfor, pc'er ofte bliver langsomme). De besøgende på hjemmesiden repræsenterer gruppen af ​​noder, der udfører det intensive beregningsarbejde for at løse det matematiske problem. Men i stedet for at de modtager belønningen, når de løser udfordringen, modtager webstedsejeren den. Derfor^(Hence) kan webstedsejere angiveligt stadig tjene penge og støtte deres virksomheder uden angiveligt at genere deres besøgende med reklamer.

Selvom Coinhive var beregnet til at være legitim, førte dets koncept til fremkomsten af ​​lignende software, som nu bruges af cyberkriminelle til Cryptomining-misbrug^{(Cryptomining abuse )} eller Cryptojacking.

Kort sagt er Cryptojacking teknikken til at kapre browsere til minedrift af kryptovaluta uden brugerens samtykke. At levere cryptocurrency-minearbejdere gennem malware er et kendt faktum, men minedrift af cryptocurrency, når de tilgår en webside, er nyt og har ført til, at angriberne misbruger til personlig vinding.^{(In short, Cryptojacking is the technique of hijacking browsers for mining cryptocurrency, without user consent. Delivering cryptocurrency miners through malware is a known fact, but mining cryptocurrency when accessing a webpage is new and has led to the attackers abusing for personal gains.)}

Cryptojacking er ikke en traditionel malware

Cryptojacking skader ikke din pc som traditionel malware eller ransomware handling. Den gemmer eller låser heller ikke noget på harddisken. Derfor^(Hence) er det i sig selv ikke en malware som sådan, men den kan helt sikkert introduceres i dit system ved hjælp af malware.

Cryptojacking , der ligner malware, bruger dine pc-ressourcer uden din tilladelse. Det kan få pc'en og browserne til at arbejde ekstremt trægt, dræne batteriet og hæve elregningen, uden at du selv er klar over det samme.

Konsekvenser af Cryptojacking

Cryptojacking kan påvirke Windows OS såvel som Mac OSX og Android . Der har været talrige tilfælde af Cryptojacking rapporteret for nylig. Nogle af de almindelige typer omfatter følgende:

Websteder, der bruger Coinhive bevidst^{(Websites using Coinhive deliberately)}

Pirates Bay var en af ​​de første store spillere, der gjorde sig skyldig i at bruge Coinhive bevidst. Problemet var, at det blev gjort gennemsigtigt, uden de besøgendes samtykke. Da kryptomine-scriptet blev opdaget, udsendte Pirate Bay en erklæring, der nævnte, at det testede denne løsning som en alternativ indtægtskilde. Forskere frygter, at der er mange sådanne websteder, som allerede bruger Coinhive uden besøgendes samtykke.

Coinhive indsprøjtet i kompromitterede websteder^{(Coinhive injected into compromised websites)}

Forskere identificerede kompromitterede WordPress- og Magento - websteder, der havde Coinhive eller en lignende JavaScript-baseret minearbejder injiceret i dem.

Læs^(Read) : Hvad skal du gøre, hvis Coinhive kryptomine-script inficerer dit websted.

Cryptojacking ved hjælp af browserudvidelser^{(Cryptojacking using browser extensions)}

In-browser cryptojacking bruger JavaScript på en webside til at mine efter kryptovalutaer. JavaScript kører på stort set alle websteder, du besøger, så JavaScript -koden, der er ansvarlig for mining i browseren, behøver ikke at være installeret. Så snart du indlæser siden, og miningkoden i browseren kører bare.

Der er tilfælde af webbrowserudvidelser, der indlejrer Coinhive , hvor kryptomineringssoftware kører i baggrunden og miner "Monero", mens browseren kørte - og ikke kun når du besøger et specifikt websted.

Cryptojacking med malware^{(Cryptojacking with malware)}

Dette er en anden type misbrug, hvor Coinhive bliver implementeret sammen med malware gennem en falsk Java - opdatering.

Cryptojacking på Android-enheder^{(Cryptojacking in Android devices)}

En Android -variant af Coinhive er blevet opdaget rettet mod russiske brugere. Denne tendens tyder på, at Cryptojacking også udvider til mobile applikationer.

Typosquatted domæner, der integrerer Coinhive^{(Typosquatted domains embedding Coinhive)}

Nogen registrerede "twitter.com.com"-domænet og indlæste Coinhive til det. Grundlæggende ville brugere, der skrev forkert på Twitters URL og landede på denne webside, mine Monero for domæneejeren, så længe de forblev på websiden.

Cryptojacking gennem cloud-tjenester^{(Cryptojacking through cloud services)}

Cyberkriminelle kaprer usikrede cloud -platforme og bruger dem til at mine kryptovalutaer.

Microsoft har underrettet om variationer af Coinhive, der bliver set i naturen. En sådan udvikling indikerer, at Coinhives succes har motiveret fremkomsten af ​​lignende software af andre parter, der ønsker at tilslutte sig dette marked.^{(Microsoft has notified of variations of Coinhive being spotted in the wild. Such a development indicates that Coinhive’s success has motivated the emergence of similar software by other parties that want to join this market.)}

Minr – Et Coinhive-^{(A Coinhive)} alternativ dukker op

Brugen af ​​Coinhive af legitime brugere har generelt været faldende på grund af den upopularitet, den har modtaget siden lanceringen. Coinhive er også let sporbar, hvilket er et andet faktum, at dets potentielle beundrere ikke bruger det på deres hjemmeside.

Så som et alternativ har teamet af Minr udviklet en mulighed for " obfuscation ", som gør det meget sværere at spore minearbejderen. Dette letter den skjulte brug af værktøjet. Denne funktion er så effektiv, at den skjuler koden^{(hides the code)} selv for det populære anti-malware-værktøj Malwarebytes .

Sådan forbliver du beskyttet mod Cryptojacking

Kryptovalutaer og Blockchain-teknologi overtager verden. Det skaber en indvirkning på den globale økonomi og forårsager også teknologiforstyrrelser . Alle er begyndt at fokusere på et så lukrativt marked – og dette inkluderer også website-hackere. Efterhånden som afkastet stiger, må vi forvente, at sådanne teknologier vil blive misbrugt.

At være opmærksom, mens du browser, er noget, du skal øve regelmæssigt, hvis du vil holde dig væk fra Cryptojacking-svindel. Du er på et kompromitteret websted, hvis du ser en pludselig stigning i hukommelsesforbrug og træg ydeevne på din pc. Den bedste handling her er at stoppe processen ved at forlade hjemmesiden og ikke besøge den igen.

Du bør også installere en god sikkerhedssoftware^{(good security software)} og holde den opdateret, samt slå firewalls til og ikke klikke på mistænkelige links, mens du browser^{(not click on suspicious links while browsing)} .

Du kan bruge Anti-WebMiner- programmer som en af ​​forholdsreglerne.

Brug en browserudvidelse, der blokerer websteder fra at bruge din CPU til kryptomining . Hvis du bruger Chrome - browseren, skal du installere^(Install) minerBlock-udvidelsen. Det er en nyttig udvidelse til Chrome -browseren til at blokere webbaserede cryptocurrency-minearbejdere overalt på nettet. Bortset fra CoinHive blokerer^(CoinHive) den endda Minr .

En anden nødvendig forholdsregel er at opdatere din Hosts-fil^{(Hosts file)} for at blokere coinhive.com og andre domæner, der vides at muliggøre uautoriseret minedrift. Husk^(Remember) , Cryptojacking vokser stadig med flere og flere mennesker, der trækker mod Cryptocurrencies, så dine blokeringslister skal opdateres regelmæssigt.

Forhindr CoinHive^{(Prevent CoinHive)} i at inficere din hjemmeside

1. Brug ikke nogen NULL- skabeloner eller plugins på dit websted/forum.
2. Hold dit CMS opdateret til den nyeste version.
3. Opdater din hostingsoftware regelmæssigt ( PHP , Database osv.).
4. Sikre din hjemmeside^{(Secure your website)} med websikkerhedsudbydere som Sucuri , Cloudflare , Wordfence osv.
5. Tag grundlæggende forholdsregler for at sikre din blog^{(precautions to secure your blog)} .

Stay alert, stay safe!

Cryptojacking the new browser mining threat you need to know about

Cryptojacking or malicious cryptomining is a new trick used to mine Cryptocurrencies on a user’s computer using their CPU resources in the background without their knowledge. Typically, the cybercriminal loads a script into the victim’s web browser which contains a unique site key to force the user to enrich them.

If you are struggling with a slow PC or internet connection, do not just blame the vendor or service provider yet because you may be a victim of a new trick used by the hackers called as browser Cryptojacking.

The evolution of Cryptojacking is attributed to the soaring interest in Cryptocurrencies for the past few months. Look at Bitcoin for the past few months or so, and its value has gone up by more than 1,000%. This has attracted attention from hackers as well and so has given birth to dangerous practices such as Crytptojacking.

What is Cryptojacking

Emergence

Before we understand what Cryptojacking is, first let us know about Cryptomining.

Cryptomining or Cryptocurrency Mining is the process by which a cryptocurrency comes into existence, using the blockchain technology. Cryptomining also lets new cryptocurrency coins get released on the market. Mining is carried out by certain peers of the cryptocurrency network who compete (individually or in groups) in solving a difficult mathematical problem, called proof-of-work

In September 2017, Coinhive debuted in the market, offering to mine the cryptocurrency called Monero (XMR). Coinhive basically offers a piece of code written in JavaScript which website owners can simply embed it on their website. Coinhive introduced a new business model for website claiming that website owners can remove ads from their websites, and load Coinhive instead.

When users access a website with Coinhive embedded, Coinhive initiates the process of crypto mining on behalf of the website owner by using user system resources (that is why PC’s often become slow). The visitors to the website represent the group of nodes doing the intensive computational work to solve the mathematical problem. However, instead of them receiving the reward when solving the challenge, the website owner receives it. Hence, website owners can supposedly still make a profit and support their businesses, without supposedly bothering their visitors with advertisements.

Although Coinhive was meant to be legitimate, its concept led to the emergence of similar software, which is now used by cyber criminals for Cryptomining abuse or Cryptojacking.

In short, Cryptojacking is the technique of hijacking browsers for mining cryptocurrency, without user consent. Delivering cryptocurrency miners through malware is a known fact, but mining cryptocurrency when accessing a webpage is new and has led to the attackers abusing for personal gains.

Cryptojacking is not a traditional malware

Cryptojacking does not harm your PC like traditional malware or ransomware act. Neither does it store or lock down anything on the hard drive. Hence, it in itself is not a malware as such, but it can certainly be introduced into your system using malware.

Cryptojacking, similar to malware, uses your PC resources without your permission. It can cause the PC and browsers to work extremely sluggish, drain the battery and raise the electricity bills without you even realizing the same.

Consequences of Cryptojacking

Cryptojacking can affect Windows OS as well as Mac OSX & Android. There have been numerous cases of Cryptojacking reported recently. Some of the common types include the following:

Websites using Coinhive deliberately

Pirates Bay was one of the first major player guilty of using Coinhive deliberately. The issue was that it was done transparently, without the visitors’ consent. Once the crypto mining script was discovered, Pirate Bay issued a statement mentioning that it was testing this solution as an alternative revenue source. Researchers fear that there are many such websites which are already using Coinhive without visitor’s consent.

Coinhive injected into compromised websites

Researchers identified compromised WordPress and Magento websites that had Coinhive, or a similar JavaScript-based miner injected into them.

Read: What to do if Coinhive crypto-mining script infects your website.

Cryptojacking using browser extensions

In-browser cryptojacking uses JavaScript on a web page to mine for cryptocurrencies. JavaScript runs on just about every website you visit, so the JavaScript code responsible for in-browser mining does not need to be installed. As soon as you load the page, and the in-browser mining code just runs.

There are cases of web browser extensions embedding Coinhive where cryptomining software run in the background and mined “Monero” while the browser was running -and not only when visiting a specific website.

Cryptojacking with malware

This is another type of abuse where Coinhive is being deployed alongside malware through a fake Java update.

Cryptojacking in Android devices

An Android variant of Coinhive has been detected targeting Russian users. This trend suggests that Cryptojacking is expanding to mobile applications as well.

Typosquatted domains embedding Coinhive

Someone registered the “twitter.com.com” domain and loaded Coinhive to it. Essentially, users who mistyped Twitter’s URL and landed on that webpage would mine Monero for the domain owner for as long as they remained at the webpage.

Cryptojacking through cloud services

Cybercriminals are hijacking unsecured Cloud platforms and using them to mine cryptocurrency.

Microsoft has notified of variations of Coinhive being spotted in the wild. Such a development indicates that Coinhive’s success has motivated the emergence of similar software by other parties that want to join this market.

Minr – A Coinhive alternative emerges

The use of Coinhive by legitimate users has in general been on decline owing to the unpopularity that it has been receiving since its launch. Coinhive is also easily traceable which is another fact that its prospective admirers are not using it on their website.

So, as an alternative, the team of Minr, has developed an option of “obfuscation”, which makes it much more difficult to track the miner. This facilitates the hidden use of the tool. This feature is so effective that it hides the code even for the popular anti-malware tool Malwarebytes.

How to stay protected from Cryptojacking

Cryptocurrencies & Blockchain technology is taking over the world. It is creating an impact on the global economy and causing technology disruptions as well. Everyone has started focusing on such a lucrative market – and this includes website hackers too. As returns increase, we should expect that such technologies will be misused.

Being observant while browsing is something that you have to practice regularly if you want to stay away from Cryptojacking frauds. You are on a compromised website if you see a sudden spike in memory usage and sluggish performance on your PC. The best action here is to stop the process by exiting the website, and not visit it again.

You should also install a good security software and keep it updated, as well as turn on firewalls and not click on suspicious links while browsing.

You can use Anti-WebMiner programs as one of the precautions.

Use a browser extension that blocks websites from using your CPU for crypto mining. If you use Chrome browser, then Install minerBlock extension. It is a useful extension for Chrome browser to block web-based cryptocurrency miners all over the web. Apart from CoinHive it even blocks Minr.

Another necessary precaution is to update your Hosts file to block coinhive.com and other domains that are known to enable unauthorized mining. Remember, Cryptojacking is still growing with more and more people drawing towards Cryptocurrencies, so your blocklists will have to be regularly updated.

Prevent CoinHive from infecting your website

1. Don’t use any NULL templates or plugins on your website/forum.
2. Keep your CMS updated to the latest version.
3. Update your hosting software regularly (PHP, Database, etc.).
4. Secure your website with web security providers like Sucuri, Cloudflare, Wordfence, etc.
5. Take basic precautions to secure your blog.

Stay alert, stay safe!

Related posts

• Hvordan undgår man phishing-svindel og angreb?

• Hvad er Remote Access Trojan? Forebyggelse, opdagelse og fjernelse

• Fjern virus fra USB-flashdrev ved hjælp af kommandoprompt eller batchfil

• Rogue Security Software eller Scareware: Hvordan kontrolleres, forhindres, fjernes?

• Hvad er Win32: BogEnt, og hvordan fjerner man det?

• Sårbarhedsangreb, forebyggelse og detektion af DLL-kapring

• Hvad er IDP.generic virus, og hvordan fjerner man det?

• 3 måder at slippe af med vira, spyware og malware

• Sådan forhindrer du malware - Tips til at sikre Windows 11/10

• Gratis værktøjer til fjernelse af malware til at fjerne specifik virus i Windows 11/10

• Hvad er rootkit? Hvordan fungerer rootkits? Rootkits forklaret.

• Det angivne modul kunne ikke findes fejl på Windows 11/10

• Hvordan kan du få en computervirus, trojan, arbejde, spyware eller malware?

• Sådan tjekker du registreringsdatabasen for malware i Windows 11/10

• Undgå Drive-by-downloads og relaterede malwareangreb

• De bedste virus- og malware-scannere GARANTERET til at ødelægge enhver virus

• Malvertising-angreb: Definition, eksempler, beskyttelse, sikkerhed

• Sådan fjerner du malware fra en Android-telefon

• Cyberangreb - definition, typer, forebyggelse

• Hvad er et bagdørsangreb? Betydning, eksempler, definitioner