New fashion: Mining method through browser with JavaScript

For many years, cyber criminals used the "cryptocurrency mining"(Extraction of cryptosmongers), making profits. Primarily, they were using malware or potentially unwanted applications that were installed on the victim's device. Currently, of ESET have analyzed a special case mining of cryptocurrencies, executed directly on browser through one JavaScript.mining

Knowing that the default settings of most browser have been enabled JavaScript, cyber criminals just introduced it script for mining on sites with high traffic.

«When someone is targeting a large number of victims, it is easier to reach them by infecting websites rather than directly their. In this particular case, cybercriminals introduced the script on sites with high traffic, affecting mainly users in Russia, Ukraine, Belarus, Moldova and Kazakhstan» he explains ο Matthew Faou, Malware Researcher of ESET.

With the aim of "extracting" Feathercoin, Litecoin and Monero, cybercriminals introduced malicious JavaScript to sites that users visit to do streaming video and play online παιχνίδια. Στους συγκεκριμένους ιστότοπους οι χρήστες παραμένουν για μεγαλύτερο χρονικό in the same , which gives the opportunity to script "Mining" to run for longer and to use more power than the system.

"This method mining is less effective, as it is 1,5 to 2 times slower compared to mining with the regular software, but it is offset by the largest number of users that it affects, "he adds Faou.

Some regulators believe that existence mining for cryptocurrencies a user's device, without his consent, is just as serious as gaining access to their computer. Thus, developers of such services should clearly state this before starting the process mining, κάτι που προφανώς δεν συμβαίνει σε ένα σχήμα που χρησιμοποιεί μεθόδους .

Ο Matthew Faou gives some tips to protect users against this threat:

·       Enable tracking mode for "Potentially Unsafe Applications end Potentially Unwanted Applications (PUA) "Solutions ESET Internet Security/ESET NOD32 Antivirus/ESET Smart Security Premium. Follow the instructions to install it yourself here.

·       Keep your Internet security solution up to date. Here you can check if you have the latest solutions updates ESET for Windows for home users.

·       Install an application ad blocker to / on browser which you use like this uBlock.

·       In addition, you can install an application script blocker As the NoScript. Please note that the one script blocker at browser may disable some features on some sites.

For more details about cryptocurrency websites mining, visit the homonymous article Cryptocurrency websites mining: in union there is profit on The Best Technology Site in Greecefgns

Subscribe to Blog by Email

Subscribe to this blog and receive notifications of new posts by email.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).