Browser mining bitcoin reddit
One of the Showtime sites affected was its content streaming site which has high traffic and user sessions are lengthy as visitors stay on the site while content is streaming. Showtime is a premium-based service so it would seem strange that users are made to pay twice for content. The scripts were promptly removed after they were discovered, suggesting that they were planted there maliciously.
Reports of many other sites using the Coinhive mining scripts soon followed. Over the Thanksgiving holiday in the U. As with Showtime, LiveHelpNow is already a legitimate revenue-generating business and there's no obvious reason as to why it would risk user confidence to earn a few extra bucks from users.
So the most likely scenario is that the server was compromised either by an outsider, or even an insider. There are many reasons why browser-based mining is back with a vengeance. Unlike in previous failed attempts, recent developments in the cryptocurrency and threat landscapes have made this a much more viable activity. Let's have a look at some of these factors in more detail:.
Privacy is important if you want to mine coins maliciously, in order to ensure others cannot easily follow the money trail back to you. Monero, which came to the market in , can offer a high level of transaction privacy. Unlike with most other cryptocurrencies that use public transparent blockchains where transaction addresses can be easily viewed by anyone, Monero does things differently. By default, everything is private, including the amount in a transaction, who sent it, and who received it.
There is an option with which wallet owners can selectively reveal some information via what's called a view key , but this is not a feature that cyber criminals are likely to want to use. As mentioned earlier, Coinhive provides a very neat and easy-to-use package for people to get involved in Monero mining. All you have to do is add a few lines of script to your website code. You don't have to make website visitors download and install executable files.
The Pirate Bay was soon followed by another high-profile site—this time Coinhive's miner was found on two of Showtime's websites. With browser-based mining, the cost of mining is borne mostly by the website visitors through hardware wear and tear as well as energy costs. Scale is achieved by using high-traffic sites with sticky content. Coinhive currently pays 0. The user would have to spend 3, seconds on the site, or roughly 55 minutes, in order to achieve a million hashes.
However, if you can get 3, users to spend approximately one second each on the site it would achieve a similar result. Even under optimal conditions, the amount of hashes produced in each instance will be small, but when it comes to distributed computing power, it's all about scale and every little bit adds up. As we noted earlier, the value of mining rewards are not great, at least not initially.
To get a better understanding, we need to look at the profitability of this activity over the longer term and take in the macroeconomic picture to get a true sense of the reward. The value of cryptocurrencies like Monero is going up dramatically. Under these circumstances where the price of Monero can go up substantially in dollar terms over a relatively short time, mining Monero can become an attractive proposition.
A small amount of Monero mined today could potentially be worth a great deal more in a matter of months conversely it could also drop significantly depending on the health of the overall cryptocurrency economy. Mirroring the rising interest and price of cryptocurrency, we have also seen a big jump in our detections of both file- and browser-based cryptocurrency mining activity in recent months.
Malicious cryptocurrency mining isn't just confined to desktop computers and servers. Always-connected mobile devices are also a growing target. We have even seen growth in coin mining on mobile phones in recent years. In , we discovered 26 different Android apps that were mining cryptocurrencies. So far in we have found 35, which is around a 34 percent increase. But cryptocurrency mining is always an energy-intensive activity so the biggest problem facing mobile mining is of course battery drain as battery technology has not progressed as fast as processing power.
Mobile mining will inevitably be noticed by the heat generated and the fast-draining battery, not to mention any performance impacts that it may also have on the device. If we consider the cryptocurrency market as whole, we can see that just as the total value of cryptocurrencies increased manifold during the year, interest in malicious mining activity, both browser- and executable-based as indicated by detections of malicious mining activity, increased in tandem with it.
As interest increases, more participants, both as miners and tool makers, join the fray. Coinhive, while being the best known at this time, doesn't have the market to itself. Similar projects like Crypto Loot are cropping up, and other browser mining projects like JSEcoin have been in beta since August and are trying to generate growth in this activity. Symantec has observed a significant jump in all cryptocurrency mining activity in recent months as evidenced in our increasing detection rate See Figures 4 and 5.
Despite the genuine aspirations of most browser mining projects to offer a real and potentially better alternative to traditional web revenue generation methods, the sad reality is, it can and is being misused.
Increasing user awareness and detection by security vendors will trigger a new arms race between cyber criminals and defenders. We can expect to see adoption of a wide range of traditional malware propagation and evasion techniques to help spread and prolong mining activity in order to maximize profit.
For as long as the current enabling factors are in place making it favorable for mining, we can expect to see interest in browser mining to be sustained or even increase in the short to medium term. Symantec is keeping a watchful eye on the growing trend of browser mining. We are making adjustments as necessary to prevent unwanted cryptocurrency miners from stealing your computing resources to enrich others.
Website owners should watch for injection of the browser-mining scripts into their website source code. Our network solutions can help you spot this in the network traffic as your server communicates with visitors. In addition, file system scans can also show up any files where the browser-based miner code has been injected, enabling you to identify and clean up the content. Symantec helps prevent others from stealing your computing resources by protecting various stages of the attack chain:.
All mining software, whether it is file- or browser-based, must be able to connect to either the cryptocurrency network or a mining pool to exchange data, in other words its proof-of-work. Without this connection, it cannot get the data it needs to generate hashes, rendering it useless. We can also block the mining scripts from being downloaded in the first instance. Our network protection operates on our endpoint solutions as well as our gateway and cloud touch points; all these solutions help build a solid defense against unwanted mining activity.
Here are some of the network protection signatures geared towards detection of browser-based mining:. Our endpoint solutions, including those for mobile devices, can detect and block all types of mining activity whether they are file-based or in-browser.
These solutions can prevent mining software from installing or running in the first instance. Browser-based mining scripts are detected as PUA. Hon Lau Mgr, Development. A surge in the cryptocurrency market in , as well as availability of coins that are mineable using home hardware and easy-to-use JavaScript APIs, has led to a torrent of malicious browser-based mining affecting many well-known and lesser-known websites. Mobile devices have not been spared from cryptocurrency mining, as witnessed by a 34 percent increase in the number of mobile apps incorporating cryptocurrency mining code.
Tried, tested, and buried Browser-based mining, as its name suggests, is a method of cryptocurrency mining that happens inside a browser and is implemented using scripting language. Dawn of the dead Fast forward to September , the cryptocurrency landscape compared with had changed drastically. Feeding time in Lambda-land Hey cool, you went serverless.
Now you just have to worry about all those stale functions You're in charge of change, and now you need to talk about DevOps hater Robin. Samsung ready to fling Exynos at anyone who wants a phone chip Surface Hub 2: Microsoft's pricey whiteboard gets a sequel Honor bound: Can Huawei's self-cannibalisation save the phone biz? Facebook boss refuses to face-off with Brit MPs. Rocket work restart in August America's forgotten space station and a mission tinged with urine, we salute you Astroboffins spy the most greedy black hole yet gobbling a Sun a day Learn how to zap menacing aliens or troublesome coworkers.
Artificial Intelligence Internet of Things Tesla forums awash with spam as mods take an unscheduled holiday Open architecture, NATO or civilian, it all works for drone bods Insitu People like convenience more than privacy — so no, blockchain will not 'decentralise the web' Boffins build smallest drone to fly itself with AI. Verity Stob Bowel down: Laxative brownies brought to colleague's leaving bash Airbus windscreen fell out at 32, feet German IKEA trip fracas assembles over trolley right of way You've got pr0n: Yes, smut by email is latest workaround for UK's looming cock block.
Now that's taking the p Huawei shames Cupertino with under-glass sensor Android devs prepare to hit pause on ads amid Google GDPR chaos Airbus windscreen fell out at 32, feet How could the Facebook data slurping scandal get worse?
Glad you asked Wanna break Microsoft's Edge browser? More from The Register. Another banking trojan is trying to loot your cryptocurrency wallets Trickbot variant adds Coinbase exchange to monitored sites.
And Oracle E-biz suite makes 3: Package also vulnerable to exploit used by cryptocurrency miner Hat trick! Cryptocurrency probably not an identity system ID on a blockchain? UK reaches peak Bitcoin as bin firm accepts cryptocurrency 'It's not a publicity stunt,' says BusinessWaste. That's hot, we mean, er, banned. Russia to block access to cryptocurrency exchanges' websites — report Updated Central bank deputy governor calls them 'dubious'.
China bans cryptocurrency fundraising schemes Bitcoin, Ethereum values dip after 'Initial Coin Offerings' ruled dangerously disruptive. Cryptocurrency-crafting creeps crept crafty code into Google App Store Chocolate Factory's anti-malware protections fail yet again.
What are the three key areas of concern around Office email you should be aware of? Like any relationship, the partnership between cloud provider and customer should be based on openness and trust.
You need more insight from more data to understand and serve increasingly powerful customers. Sponsored links Get The Register's Headlines in your inbox daily - quick signup! About us Who we are Under the hood Contact us Advertise with us.