Researcher Finds Nearly 50,000 Websites Running Cryptocurrency Mining Malware

Researcher Finds Nearly 50,000 Websites Running Cryptocurrency Mining Malware

Troy Mursch from Bad Packets Report recently conducted an investigation, in which he found that the ongoing cryptojacking trend has infected nearly 50,000 websites. According to his report, 48,953 websites are running cryptocurrency mining malware.

Cryptocurrency mining malware essentially consists of a few lines of jаvascript code that allow a website’s admin to use its visitors’ computer resources to mine privacy-centric cryptocurrencies, the most popular one being Monero (XMR).

Mursch’s research was made using source-code search engine PublicWWW. Using it, he scanned the web for pages running cryptocurrency mining malware. Out of the 48,953 affected websites he found, 7,368 are powered by WordPress.

The researcher further revealed that Coinhive is the most widespread mining script out there. It accounts for nearly 40,000 infected websites, which roughly translates to 81 percent of all cases. Back in November, Mursch’s research found 30,000 websites running Coinhive’s script.

The remaining 19 percent of websites were found to be running Coinhive alternatives, like Crypto-Loot, CoinImp, Minr, and deepMiner. The report reads:

“The four Coinhive clones discussed were found on a total of 9,028 websites. CoinImp had the largest market share at roughly 45% while Minr had the smallest at nearly 8%. Crypto-Loot and deepMiner shared the remaining portions at nearly 23% a piece.”

The researcher published a document on PasteBin, detailing all WordPress websites infected with the cryptocurrency mining malware. The document notes that some have already removed the malware, although most are still likely to mine with user’s computers. “Browse at your own risk,” the document reads.

Per the researcher, users looking to protect themselves from the ongoing cryptojacking trend should install the minerBlock extension for Chrome and Firefox. Browsers like Opera and Brave already have built-in tools that block mining attempts as well.

The ongoing cryptojacking trend has been making headlines for affecting high-profile victims, including government websites last month. As reported, Tesla was also hit with a cryptocurrency mining malware attack, as hackers used its cloud to mine.

As covered by Ethereum World News, hackers aren’t just using people’s CPUs to mine Monero. They are now stuffing Monero ransom notes inside distributed denial of service (DDoS) attacks, to get victims to pay them to stop.

08.03.2018 / 13:35 77
Domains Running Cryptocurrency Mining Scripts Surge 725 Percent Domains Running Cryptocurrency Mining
The number of domains with cryptocurrency mining scripts installed has skyrocketed 725 percent in four months, according to a security firm’s
Hackers Are Stuffing Monero Ransom Notes Inside DDoS Attacks Hackers Are Stuffing Monero Ransom
Privacy-centric cryptocurrencies like Monero (XMR) are attractive to cybercriminals, who’ll seemingly do anything to get paid. Following a
Interest in Cryptocurrency Jumped 15-Fold in Kazakhstan Interest in Cryptocurrency Jumped
Interest in cryptocurrency in Kazakhstan has surged fifteen-fold this year compared to 2017 according to a study by Yandex. The number of online
How Hacked Widgets Help Criminals Mine Monero How Hacked Widgets Help Criminals Mine
Covert cryptocurrency mining is shaping up to be the new mainstay of cybercrime. Crooks hack servers, personal computers, and mobile devices and take
Louisiana Officials Probe Staffers for Bitcoin Mining Louisiana Officials Probe Staffers for
The attorney general of the U.S. state of Louisiana is reportedly investigating a group of former staffers for using official resources to mine
Louisiana Attorney General Probes Own IT Dept Over Bitcoin Mining Allegations Louisiana Attorney General Probes Own
The Louisiana Attorney General, Jeff Landry, has opened a criminal investigation into his own office’s information technology division, including its
Comments (0)
Add a comment
Comment on