•   
  •   
  •   

Technology Millions Of Android Devices Compromised, Mining For Monero

15:21  14 february  2018
15:21  14 february  2018 Source:   ibtimes.com

Android Messages may soon let you text from the web

  Android Messages may soon let you text from the web Could Google finally be getting serious about taking on iMessage?It’s possible, however, that the last leg of that messaging stool is about to get a lot more interesting. Android Police just dug into the code for the very latest version of Android Messages, the app Google makes for SMS. And inside it are references to two very intriguing features.

Millions of Android devices have quietly fallen victim to a “drive-by” campaign that uses the mobile device ’s computing power to mine for the cryptocurrency Monero , researchers at cybersecurity firm Malwarebtyes found.

So far two known domains have been corrupting Android devices with crytpojacking malware. The two affected domains have received over 30 million visits in the last month alone.

a hand holding a cellphone © Provided by IBT US

Millions of Android devices have quietly fallen victim to a “drive-by” campaign that uses the mobile device’s computing power to mine for the cryptocurrency Monero, researchers at cybersecurity firm Malwarebtyes found.

The attack, first discovered in January, has been ongoing since at least November 2017, according to the researchers. It uses malicious advertisements that contain hidden code that, when opened on an Android device, uses the processing power of the phone or tablet to generate cryptocurrency.

The cryptomining scheme uses malvertising tactics—malicious advertisements that are served up on websites just like standard ads but contain code that can mine for cryptocurrency—to hijack a user’s device without their knowledge.

Latest in cybercrime: Your infected computer enslaved to earn digital currency

  Latest in cybercrime: Your infected computer enslaved to earn digital currency When unauthorized software found its way onto the network of a small Tennessee hospital, the culprits didn't ask for ransom. They didn't steal records. What they did was silently harness computing power for a money-making task.The task was to "mine" digital currency, and the culprits did it by yoking together a quiet army of infected computers to generate a stream of money.

Millions Of Android Devices Compromised , Mining For Monero Millions of Android devices have quietly fallen victim to a “drive-by” campaign that uses the mobile device ’s computing power to mine for the cryptocurrency Monero , researchers at cybersecurity firm M

Millions of Android devices have quietly fallen victim to a “drive-by” campaign that uses the mobile device ’s computing power to mine for the cryptocurrency Monero , researchers at cybersecurity firm Malwarebtyes found.

When a victim clicks on an advertisement or visits a page with the malicious ads, they are redirected to web pages that contain the cryptomining code. Once the fake site is opened, it begins to generate revenue for the attackers.

The so-call “drive-by” campaign only works when a victim visits one of the sites with the cryptomining code running on it, so the attack doesn’t necessarily present long-term harm to a user’s device.

While active, the code will use the device’s processor to generate the cryptocurrency—a task that involves solving complicated mathematical problems in order to process transactions and release additional currency.

To get the user to submit to the mining effort, it uses a clever technique to trick them. It displays a message that states, “Your device is showing suspicious surfing behavior. Please prove that you are human by solving the captcha” and provides the user with a code that they must enter to continue. One the code is entered, the script starts its mining efforts.

Google's Next Android Overhaul Is Said to Embrace IPhone `Notch'

  Google's Next Android Overhaul Is Said to Embrace IPhone `Notch' Google is working on an overhaul of its Android mobile software for a new generation of smartphones mimicking Apple Inc.’s controversial new "notch" at the top of the iPhone X, according to people familiar with the situation. The Android update, due later in the year, will also more tightly integrate Google’s digital assistant, improve battery life on phones and support new designs, like multiple screens and foldable displays, the people added.

Millions of Android devices have quietly fallen victim to a drive-by campaign that uses the mobile devices computing power to mine for the cryptocurrency Monero , researchers at cybersecurity firm Malwarebtyes found.

Security researchers say millions of Android devices have been hit by a "drive by" campaign designed to mine for the cryptocurrency Monero . You are using an older browser version. Please use a supported version for the best MSN experience. Millions Of Android Devices Compromised

The attack generates Monero, a cryptocurrency that has grown increasingly popular for these types of cryptojacking attacks as it is entirely anonymous and next to impossible to trace back to a source.

Cryptojacking attacks have cropped up a number of ways online. Some websites have used the tactics to generate income without disclosing the practice to users. Cryptomining code has also been hidden in web browser extensions and other tools that hijack a user’s processor. Generally speaking, it is harmless other than using a victim’s processing power without their permission.

According to the researchers at Malwarebtyes, the drive-by campaign has been identified on five domains so far, which have amassed a total of 30 million visitors per month and average about 800,000 visitors per day.

Malwarebytes researchers have so far identified five such domains and two of them had more than 30 million visits per month and the cumulative traffic from these domains totaled around 800,000 visits per day. According to

“We believe there are several more domains than just the few that we caught, but even this small subset is enough to give us an idea of the scope of this campaign,” Jerome Segura, Malwarebytes’ lead malware intelligence analyst, said. “ It is difficult to determine how much Monero currency this operation is currently yielding without knowing how many other domains (and therefore total traffic) are out there.”

Because the attack only operates while a victim is on one of the malicious web pages, there is a relatively low yield from the attack. Malwarebtyes estimated the attackers have netted “a few thousand dollars each month” from the campaign.

Samsung saves Opera Max browser app from the deadpool .
Opera Max lives on after Samsung acquired the mobile browser to save it from oblivion.The browser was one of the first data-friendly mobile browsers and it later added privacy-focused settings, including safeguards against insecure WiFi connections and a VPN. The popular app clocked up more than 500,000 installs, but that didn't stop parent company Opera -- which is owned by a consortium of Chinese firms -- from announcing its closure last year."Opera has now decided to discontinue Opera Max.

—   Share news in the SOC. Networks

Topical videos:

This is interesting!