Jump to content

Invite Scene - #1 to Buy, Sell, Trade or Find Free Torrent Invites

#1 TorrentInvites Community. Buy, Sell, Trade or Find Free Torrent Invites for Every Private Torrent Trackers. HDB, BTN, AOM, DB9, PTP, RED, MTV, EXIGO, FL, IPT, TVBZ, AB, BIB, TIK, EMP, FSC, GGN, KG, MTTP, TL, TTG, 32P, AHD, CHD, CG, OPS, TT, WIHD, BHD, U2 etc.

LOOKING FOR HIGH QUALITY SEEDBOX? EVOSEEDBOX.COM PROVIDES YOU BLAZING FAST & HIGH END SEEDBOXES | STARTING AT $5.00/MONTH!

Nearly 1,000 websites found running cryptomining code that hijacks computers


bsaambl

Recommended Posts

The number of websites injecting visitors’ computers with JavaScript code that is used to mine for cryptocurrency is rapidly growing, according to new research detecting nearly 1,000 sites now partaking in the practice.

Security firm RiskIQ Inc. today said it made the discovery, finding 991 domains using code from Coin Hive. That company provides the service that sees the computing resources of website visitors used to mine for Monero, a cryptocurrency that competes with bitcoin and Ethereum.

The practice of using JavaScript injections for cryptomining first came to public attention two weeks ago when The Pirate Bay was detected using the code on some pages. Ostensibly it was for testing purposes, though the site said it was considering using the script as an alternative to displaying ads. The code was detected again this week on sites run by Showtime, the CBS Corp.-owned premium cable channel, although it’s not known if those sites were testing the code or if they had been hacked.

RiskIQ noted that implementation of the code is not always bad. Some sites ask permission from visitors to allow it to run, while others, like The Pirate Bay and Showtime, “are leveraging their users’ machines to collect Monero without their consent, degrading their experience with slower speeds in the process.”

The researchers added that at least with some installations of the cryptomining code, website owners may not be aware that it is present and it “could have found its way onto a site when public code was modified downstream,” which is another way of saying the sites were hacked.

The use of cryptominers on websites does present other risks, with the researchers noting that it gives opportunities to bad actors to create fake, illegitimate websites to siphon off money. “By leveraging domains or subdomains that appear to belong to major brands, these actors trick people to visiting their sites running the Coin Hive Monero mining script to monetize their content,” they added. “In the 991 domains we found, there were many examples of typo-squatting and domain infringement.”

There are a number of options available to users who are concerned about sites using the script. Ad blocker Adblock Plus added a block against cryptominers last week, and for Google Chrome users there is dedicated browser add-on called No Coin that also blocks the code.
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Check out what our members are saying

  • Our picks

×
×
  • Create New...