Though their exchange rates continue to fluctuate wildly, Bitcoin, Monero, and other cryptocurrencies have skyrocketed in value in recent months. Well aware of that fact, cybercriminals have been churning out huge volumes of “cryptomining” exploits that use the processing power of ordinary PCs and servers to surreptitiously generate digital riches.
“It’s taking the place of ransomware now,” says Marc Laliberte, a security analyst at Seattle-based WatchGuard Technologies Inc. “They’re constantly in the top 10 detected threats we see every day.”
The reason why isn’t hard to figure out either, he continues. Ransomware is a one-and-done crime that generates a single chunk of income. Cryptomining is the illicit gift that keeps on giving.
“You can sit there hidden for days, months, maybe even years—we’ll see—and slowly siphon off computing power to have a constant revenue stream,” Laliberte says.
The problem isn’t going away any time soon as long as long as digital currencies continue trading at tantalizingly high prices, according to Adam Kujawa, director of malware intelligence at Malwarebytes Inc., of Santa Clara, Calif. That’s not all bad news either, he adds. Encrypting data, after all, is far more harmful to businesses than stealing their processing power.
“I tell a lot of people if this is the only type of malware I ever deal with again, I’ll be happy,” Kujawa says, especially since most cryptomining programs are relatively easy to detect at present.
“They’re very loud,” Kujawa notes, mostly because the people writing them tend to be experts in cryptomining rather than virus-writing. The problem is what happens in the future when that’s no longer true.
“We think that if the value of cryptocurrencies continues to be worth it, then the criminals are going to develop more dangerous types of miners,” Kujawa predicts, include rootkit infections and other silent, well-hidden threats. Worse yet, he continues, hackers will eventually use the back doors they opened when deploying cryptomining code to perpetrate more nefarious attacks.
More Galleries like This
A new report from the security vendor reveals ransomware to be the biggest but far from only significant threat plaguing businesses presently.
The security vendor foresees less ransomware, more business email compromise scams, and a dangerous increase in attacks on industrial infrastructure control systems.
Tuesday, if you didn’t notice, was Anti-Ransomware Day. Data published this week by Kaspersky, Sophos, and Kaseya suggests the damage ransomware inflicts remains as substantial as the opportunity it creates for providers of security services.
Speaking online yesterday about the vendor’s latest cyber threat report, SonicWall CEO Bill Conner (pictured) discussed an alarming rise in ransomware attacks, IoT exploits, and other threats in the first half of 2020.
New studies from Trend Micro and Thales suggest healthcare providers are vulnerable to attack and investing more heavily in security as a result.