Latest news about Bitcoin and all cryptocurrencies. Your daily crypto news habit.
BlackBerry exec believes that many businesses donāt have a great visibility about the combination of crypto mining apps with malware.
Cryptojacking attacks are both an internal and external threat, as the hacking groups are getting more organized in attempts to exploit vulnerabilities in the networks. However, there are also cases where some admins use valid entitlements to make money from illegally mining crypto using the firmās network resources, and many organizations ādonāt have great visibilityā about it, says Josh Lemos, VP of research and intelligence at BlackBerry.
Lemos told Cointelegraph that a crypto mining software is not necessarily malicious but rather opportunistic utilizing compute resources for monetary gain, "although you often find it paired with malicious software,ā and itās also a fact not well-enough observed by some organizations when it comes to protecting their networks.
Any Cryptojacking malware can be dangerous
Lemos further elaborated on crypto mining apps getting sophisticated nowadays, saying that crypto miners donāt need to be sophisticated and can be deliver in various ways: "from JavaScript running on a website as a watering hole attack or embedded in a spear-phishing email to supply chain attacks with miners embedded in docker hub images and malicious browser extensions.ā He went on to add that: āDistribution is the primary goal and with detection does not carry a meaningful risk, TAs can spread their miners far and wide."
Recent cryptojacking cases, like Lucifer, show a pattern ā the common usage of XMRig crypto-miner app in the attacks. BlackBerry executive explained why Monero (XMR) is often used in the attacks, rather than other currencies:
āMonero is pitched as more lucrative to the average user due to the nature of the mining algorithm. Anytime you have uneducated users looking for a quick buck, you will have more opportunities for exploitation. The old adage still holds true: the best way to get rich in a gold rush is to sell shovels. In this case, the shovels also contain malware.ā
Pandemic driving cryptojacking attacks?
Lemos believes that the fact of hackers using full malware suites with capabilities that leverage numerous vulnerabilities to establish persistence shows a growing trend in such kind of cryptojacking attacks, and Lucifer is āa continuation or evolution of that trend.ā
As the COVID-19 pandemic is still active in several countries, Lamos claims that as long as cryptocurrencies are being considered as a āvaluable alternative investment,ā the rising trend of the cryptojacking attacks āis here to stay,ā as itās not about blaming the coronavirus-related jump specifically.
Disclaimer
The views and opinions expressed in this article are solely those of the authors and do not reflect the views of Bitcoin Insider. Every investment and trading move involves risk - this is especially true for cryptocurrencies given their volatility. We strongly advise our readers to conduct their own research when making a decision.