McAfee Labs: Crypto Mining Malware Grows by 86% in Q2, Over 2.5 Mln New Coin Miner Samples

Published at: Sept. 26, 2018

The number of crypto mining malware attacks used by hackers has continued rising, with total samples growing by 86% in the second quarter of 2018, according to the latest threat report by cybersecurity firm McAfee Labs released September 25.

In the report, cybersecurity experts stated more that than 2.5 million new malware coin miner samples were found in Q2. In comparison, the number of crypto malware attacks in Q1 amounted to around 2.9 million, which is a 629 percent rise from around the 400,000 samples found in Q4 2017.

The report concluded that coin miner malware “remains very active,” following the general surge of crypto mining malware with “new coin miner threats [that] have jumped massively in 2018.”

Coin miner threats statistics. Source: McAfee Labs, 2018

Specifically, the report stresses the fact that cybercriminals have found “new angles” of illegal coin mining to raise profits, which is coming on the heels of a surge in popularity of crypto and blockchain technology. McAfee Labs also cited the recent threat report named “Don’t Join Blockchain Revolution Without Ensuring Security” to warn users of the emerging technologies about the associated risks.

Christiaan Beek, Lead Scientist and Senior Principal Engineer with McAfee Advanced Threat Research, commented to Business Wire that apart from PCs, low-CPU devices have become a new source of “profitable revenue stream” for cybercriminals.

Due to their “propensity for weak passwords,” as well as the ability to take over “tremendous volume” of devices such as Wi-Fi routers, video cameras, and other Internet-of-Things (IoT) appliances, they represent a “very attractive platform” for illicit crypto mining activities.

Last week, Cointelegraph reported that official government websites have become the main target for cryptojacking in India, including websites of municipal administrations.

In late August, Firefox announced that they will start blocking cryptojacking malware in future versions of their web browser, including crypto mining scripts that “silently mine cryptocurrencies” on users’ devices.

Tags
Related Posts
Expert Warns: Don’t Trust Ransomware Groups Amid Pandemic
A cybersecurity expert explained why he is convinced that the promises made by ransomware groups amid the pandemic are irrelevant. Brett Callow — threat analyst at cybersecurity firm Emsisoft — told Cointelegraph that multiple ransomware groups recently made promises to halt their activity against medical organizations amid the coronavirus pandemic. Still, he believes that those promises are irrelevant: “The claims of a ceasefire made by ransomware groups are irrelevant [and] should be completely disregarded. Would you leave your front door unlocked simply because the local burglars had pinky-promised not to rob you? Probably not. The story of the frog and …
Blockchain / April 16, 2020
Cryptojacking Protection an Area of Focus for Microsoft’s Edge Browser
Edge, the web browser of information technology giant Microsoft, now blocks cryptojacking malware. A Microsoft Edge spokesperson told Cointelegraph on Feb. 10 that the latest version of the web browser features a new PUA (Potentially Unwanted Apps) blocking feature that may block some illicit cryptocurrency mining malware. When asked about whether Microsoft plans to protect Edge users from illicit cryptocurrency miners, the spokesperson said that “this will be a particular area of focus.” As cryptojacking is increasingly becoming a cybersecurity threat, efforts to tackle the issue are also scaling up. A new cybersecurity feature Cryptojacking is the practice of illicitly …
Altcoin / Feb. 10, 2020
Napster Creator’s Blockchain Firm Helium Releases IoT Hotspots
Napster creator Shawn Fanning’s new company Helium has released its internet of things (IoT) wireless hotspot devices with a blockchain-based incentives program, according to an official blog post by Helium on June 12. According to the post, a Helium Hotspot provides wireless connectivity to the Internet; one node on its own will cover about 1/50 to 1/150 of a city, according to the company’s research. The nodes are intended to support a network of internet coverage, one which is decentralized and powered by individual contributors. Contributors are rewarded by an incentives program on the Helium blockchain, which is powered by …
Decentralization / June 12, 2019
New Linux-Targeting Crypto-Mining Malware Combines Hiding and Upgrading Capabilities
Japanese multinational cybersecurity firm Trend Micro has detected a new strain of crypto-mining malware that targets PCs running Linux, according to a report published Nov. 8. The new strain is reportedly able to hide the malicious process of unauthorized cryptocurrency-mining through users’ CPU by implementing a rootkit component. The malware itself, detected by Trend Micro as Coinminer.Linux.KORKERDS.AB, is also reportedly capable of updating itself. According to the report, the combination of hiding and self-upgrading capabilities gives the malware a great advantage. While the rootkit fails to hide the increased CPU usage and the presence of a running crypto-mining malware, it …
Blockchain / Nov. 13, 2018
Report: Number of Compromised Routers in India Doubled, Reaching Almost 30,000
A recent report by security company Banbreach has found that in the past month, the number of routers compromised by cryptojacking software in India has doubled. The report indicates that hackers have cracked over 30,000 routers within the country, Hard Fork reported Oct. 5. Banbreach managed to track Internet traffic and detect all devices on the Internet with public IP addresses, which made it possible to examine traffic passing through routers. In the course of its research, Banbreach grouped populated areas of India into three categories from most to least dense. According to the report, 45 percent of the infected …
Blockchain / Oct. 6, 2018