Friday, June 21, 2024

Over 500 Million Users PC’s are Secretly Mining CryptoCurrency in Browser without Users Knowledge

Over 500 million computer are mining cryptoCurrency in their browsers without users knowledge by 100 of the website by injecting mining scripts in their browsers by secretly hijacks visitors CPU’s.

Crypto mining is not something like malware or any other malicious payload but its used by many top ranking websites for injecting a mining JavaScript into visitors browsers by hijacking the CPU process and Slow Down the computer using up processing power.

This impact has estimated as very huge which is around 500 Million users around the World because of 220 websites of 100k top ranking websites are using crypto-Mining scripts to inject the visitor’s browsers.

Also Read : Over 1.65 Million Users Infected By Malware Miners In 2017

These top order websites are Mining cryptocurrency for generating revenue through ads by injecting aa mining scripts into visitors browsers by abusing these website reputation especially they launch mining when a user opens their main page, with an aggregated audience of 500 million peoples.

Affected Countries – Mining CryptoCurrency

Affected Users Countries Estimated around the globe including USA, China, South American and European countries, Russia, India, Iran.

This CryptoMining website estimated joint profit at over US $43,000, and this money has been made in three weeks at almost zero cost.

According to AdGuard, Examining the website list more closely, we discovered that many of them are from the “gray zone”, mostly pirate TV and video sites, Torrent trackers and porn websites. Judging from these characteristics, we begin to wonder if browser mining is a bad thing and if it should be banned from the Internet.

In this case, Many of Top Oder website’s are using Most Popular CryptoCurrency and JSEcoin.

Fewdays Before security researcher Troy Mursch Discovered that Politifact.com using CoinHive and caused his computer’s CPU to run at its maximum capacity.

In fact, the largest torrent search engine, The Pirate Bay, that made CoinHive famous by being caught using it.

The company’s video streaming platforms are the exact type of websites that are good for mining: They boast a huge audience that keeps their site open in their browsers for a long time.

The ethical way for a website to earn money by mining through its audience’s computers is to ask the audience for permission first, and to allow them the possibility to opt out. Actually, such a practice could make mining even more ethical than ads. After all, nobody asks us if we would like to see ads on a website. adguard Said.

Website

Latest articles

PrestaShop Website Under Injection Attack Via Facebook Module

A critical vulnerability has been discovered in the "Facebook" module (pkfacebook) from Promokit.eu for...

Beware Of Illegal OTT Platforms That Exposes Sensitive Personal Information

A recent rise in data breaches from illegal Chinese OTT platforms exposes that user...

Beware Of Zergeca Botnet with Advanced Scanning & Persistence Features

A new botnet named Zergeca has emerged, showcasing advanced capabilities that set it apart...

Mailcow Mail Server Vulnerability Let Attackers Execute Remote Code

Two critical vulnerabilities (CVE-2024-31204 and CVE-2024-30270) affecting Mailcow versions before 2024-04 allow attackers to...

Hackers Attacking Vaults, Buckets, And Secrets To Steal Data

Hackers target vaults, buckets, and secrets to access some of the most classified and...

Hackers Weaponizing Windows Shortcut Files for Phishing

LNK files, a shortcut file type in Windows OS, provide easy access to programs,...

New Highly Evasive SquidLoader Attacking Employees Mimic As Word Document

Researchers discovered a new malware loader named SquidLoader targeting Chinese organizations, which arrives as...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Free Webinar

API Vulnerability Scanning

71% of the internet traffic comes from APIs so APIs have become soft targets for hackers.Securing APIs is a simple workflow provided you find API specific vulnerabilities and protect them.In the upcoming webinar, join Vivek Gopalan, VP of Products at Indusface as he takes you through the fundamentals of API vulnerability scanning..
Key takeaways include:

  • Scan API endpoints for OWASP API Top 10 vulnerabilities
  • Perform API penetration testing for business logic vulnerabilities
  • Prioritize the most critical vulnerabilities with AcuRisQ
  • Workflow automation for this entire process

Related Articles