Coinhive Found In DoubleClick Ad Campaigns

Coinhive Found In DoubleClick Ad Campaigns

Coinhive, the monero mining script, had already been found in Starbucks cafes and some websites such as the Pirate Bay. It seems like the trend is still viral because the security provider Trend Micro has found the code embedded in ad campaign banners.

Pirate Bay Resumes Mining Monero Using Visitor CPU Power
How To Protect Our Devices From Cryptojacking And Mining Scripts
Ads Or Mining? It’s Up To You!

Coinhive, the monero mining script, had already been found in Starbucks cafes and some websites such as the Pirate Bay. It seems like the trend is still viral because the security provider Trend Micro has found the code embedded in ad campaign banners.

The people that had tried the quick-rich formula had attacked the DoubleClick ad service by Google. The hackers had also used an additional web miner that establishes a connection with a private pool, according to Trend Micro’s blog post. As far as we know the countries that have been affected the most are Italy, France, Spain, Japan and Taiwan. The cybersecurity firm has revealed its findings to Google.

Between January 18 and January 24 there had been an increased traffic in five fraudulent domains and that traffic had come from DoubleClick advertisements. As a result, the number of coinhive miners surged by 285%.

The whole malware run quite simple. The websites displays legitimate ads while an additional two scripts utilize users’ CPUs. The hackers however made a smart move by placing the ads at legitimate sites only, thus reaching a greater number of visitors.

When one clicks on an ad, it generates a random number between 1 and 100. When the variable is above 10 coinhive to mine with 80% of CPU’s power. When the variable is below 10, a private web miner starts working. Both types of miners utilize 80% of CPU’s power.

However, it is possible to protect yourself and it is quite easy actually. The only thing that you have to do is to block JavaScript applications from running on your browser. You can prevent malicious software if you update and patch your PC on a regular basis, as well.

The Trend Micro Smart Protection Suites offers protection against scam and false URLs. The company itself provides other services such as web reputation, behavior monitoring, and machine learning.

COMMENTS

WORDPRESS: 0