Cryptocurrency mining malware has infected over 1.65 million computers this year

Graph of the increase in cryptocurrency mining trojans as measured by Kaspersky Labs. (Source: Bleeping Computer)

Data from Kaspersky Labs shows that the number of cryptocurrency mining trojan infections in 2017 has passed 1.65 million to date. Criminals use infected PCs to crunch transactions and route the success fee to their own digital wallets.

Craig Ward, Published 09/12/2017

Russian security firm, Kaspersky Labs, has been monitoring data on cryptocurrency mining trojans for seven years now. There has been a rapid increase in the number of infected computers over that time, and the total for 2017-to-date has already passed 1.65 million infected devices. This figure isn't far from surpassing the 2015 numbers and indicates that there will likely be more infections this year than in 2016, despite virus scanners attempting to find and remove these trojans.

While trojans are often used to try and sneak keyloggers onto systems to capture banking details or credit card information, a more consistent target for some hacking groups is to make their infected network of computers mine cryptocurrency (process transactions) for them.

Often they target currencies that allow anonymous transactions, such as Zcash and Monero, since some other major cryptocurrencies are only semi-anonymous. In the case of Bitcoin, all transactions are stored publicly, and anyone can monitor the balance and movements of any known Bitcoin address — which is how authorities tracked the transactions of the WannaCry hackers. The identity of the address owner is only anonymous until they perform an action that reveals their details, such as making a purchase.

The number of cryptocurrency trojan infections is likely to keep rising for the next few years due to two factors. First is that as the currencies themselves get more popular, they will become easier and more attractive methods of laundering money. Second is that this branch of trojan has a broad install base; in 2017 there have been significant cases of injections on all three of the largest operating systems — Windows, MacOS, and Linux.

Source(s)

Bleeping Computer

Bitcoin

The free Office Depot PC Health Check allegedly operated in a similar fashion to scareware. (Source: FTC)

PC Health Check scareware allegations cost Office Depot and Support.com US$35 million 03/28/2019

Operation ShadowHammer: Tens of thousands of computers had a security backdoor installed via Asus' Live Update Utility 03/25/2019

Talos has estimated that VPNFilter has infected devices in at least 54 countries. (Source: Cisco)

Russia accused of plotting massive VPNFilter malware attack 05/24/2018

The stolen computers could be used to mine virtual currency. (Source: VentureBeat)

Cryptocurrency news: Big Bitcoin Heist and Merriam-Webster legitimacy 03/05/2018

Cybersecurity firms are analyzing the malicious code known as Olympic Destroyer. (Source: Forbes)

"Olympic Destroyer" virus fails to destroy Olympics 02/12/2018

ADB.Miner worm global infection map (Source: 360 Netlab Blog)

ADB.Miner worm turns your Android device into a mining rig 02/07/2018

The Coincheck incident could be considered the biggest digital theft in recent years. (Source: Dowbit.com)

Cryptohackers steal US$500+ million from Japanese online exchange Coincheck 01/29/2018

Google has pulled 63 apps found to serve up porn ads. (Source: PC World)

Google pulls 63 Android apps serving up porn ads 01/14/2018

North Korean military parade, North Korean Android malware targets defectors and their supporters

North Korean malware targets defectors and their supporters 01/12/2018

The Archive Poster Chrome extension has been caught mining cryptocurrency. (Source: Google)

Smartphone in smoke, the possible outcome of a Loapi Trojan malware infection (Source: Kaspersky Lab official blog)

The Loapi Trojan malware can blow up your Android phone 12/20/2017

Pre-installed keylogger found in 460 HP laptop models in December 2017 (Source: Dash Force News)

More than 460 HP laptop models come with a pre-installed keylogger 12/11/2017

New cryptomining exploit continues to use your resources even after the browser window is closed 12/02/2017

Indian Intelligence Bureau calls out smartphone apps sending data to China 12/01/2017

They may take everything but never our freedom. Never our right to choose.

The fight for Net Neutrality is on...you should take action today 11/26/2017

Movement in Bitcoin value over the last seven days. (Source: Coindesk)

Bitcoin reached a massive US$7583 value by late last week, but dropped dramatically on Monday 11/06/2017

The wolf in sheep's clothing which snuck into thousands of unsuspecting digital pens. (Source: SwiftOnSecurity)

A fake Adblock Plus extension has infected about 37,000 Google Chrome users 10/10/2017

CBS-owned 'Showtime' joins The Pirate Bay and rogue chrome extensions in using your CPU to mine cryptocurrency 09/26/2017

SafeBrowse's 4.4 start rating is starting to drop. (Source: Chrome Webstore)

A Chrome extension now takes your CPU cycles to mine cryptocurrency for the developer 09/19/2017

The Pirate Bay is caught stealing from users who are busy stealing content 09/16/2017

Ransomware Locky and Mamba have started rearing their ugly heads again. (Source: 2-Spyware)

Beware! Ransomware Locky and Mamba on the prowl again 08/18/2017

The WannaCry hackers are taking a risk emptying their bitcoin wallets. (Source: HypnoArt/Pixabay)

WannaCry hackers empty their wallets 08/05/2017

Petya's decryption key is now available but tough luck for those affected by NotPetya. (Source: MalwareBytes Blog)

Master decryption key for Petya ransomware found to be ineffective against NotPetya 07/12/2017

WannaCry is estimated to have extracted US$126,000 in Bitcoin from victims. (Source: Gillian Hann/Twitter)

British intelligence claims North Korea is behind WannaCry, though doubts persist 06/19/2017

The NSA cyber weapon-powered WannaCry ransomware spread across the world this past weekend, infecting as many as 200,000 Windows systems. (Source: Forbes)

New malware could be more destructive than WannaCry ransomware 05/22/2017

Loading Comments

Comment on this article

Firefox 57 to drop the search bar

This is the iPhone X: Apple's flags...

Craig Ward - Tech Writer - 397 articles published on Notebookcheck since 2017

I grew up in a family surrounded by technology, starting with my father loading up games for me on a Commodore 64, and later on a 486. In the late 90's and early 00's I started learning how to tinker with Windows, while also playing around with Linux distributions, both of which gave me an interest for learning how to make software do what you want it to do, and modifying settings that aren't normally user accessible. After this I started building my own computers, and tearing laptops apart, which gave me an insight into hardware and how it works in a complete system. Now keeping up with the latest in hardware and software news is a passion of mine.

Please share our article, every link counts!