Report: Unauthorized digital currency mining across browsers is widespread

Oct

22

2017

Palo Alto Networks said in a new report that the wave of encrypted or encrypted currencies swept the world strongly and quickly, starting with the currency of Bettquin, the biggest player on the scene so far, to new currencies such as Monero and Atheroom.

“Thus, the burgeoning currency mining industry flourished, moving from the use of powerful and stressful mining tools to investing in the parallel computing power of the graphics card,” the US information security company said.

Palo Alto Networks also noted that currency mining operations have recently been launched by browsers, based on many reasons. Although the power of computing (according to each case) is much weaker than custom tools, the ability to invest many users across different locations is something that customized tools can not provide.

The company noted that there is already some media coverage on the subject to some extent, such as the BBC and the Milwarts site . “Although we do not look at encrypted (encrypted) currency mining operations within browsers as malicious in themselves, mining often works without the end-user’s consent or even knowing it, making it vague , And its objectives can not be predicted. ”

According to Palo Alto Networks, Coinhive is one of the most popular intermediate platforms providing mining services through browsers, and the most popular, as site owners use JavaScript templates to facilitate the integration of operations, and site owners benefit from the CPU time of the computer which The site’s visitor works for Moneros’ coin mining for the Quinnhaev site, which in turn pays 70% of the value to the owners of the site. A new player, Crypto-loot , offers similar services but pays 88% of revenue.

AdGuard also pointed out that the use of its mining services or similar sites is not a malicious activity in itself; it is how they are used, which makes the sites malicious. Unfortunately, sites that we have been able to monitor in mining and encryption activities have not warned the user in any way about this, which puts these mining operations at high risk, which could lead to their total disruption.

With the value of the deposit going up to more than $ 5,000 (at the time of writing), Palo Alto Networks said it expects more mining services to be deployed everywhere. To protect users from this growing threat at an accelerated pace, the company offers two options. The first is to block the links of hosted JavaScript files for their content through PANDB filtering technology, because JavaScript scripts consume system resources without user knowledge or consent.

As for the second option, common add-ons and updates, such as Adblock Plus or AdGuard, block such mining scripts. Combined with a sophisticated firewall solution, the company said users will be assured that the previous CPU time, along with electricity, will not be exploited by any hidden text.

Viewing:-86

In: Technology & Gadgets Asked By: [17729 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »