Kaspersky Lab’s researchers have discovered that more and more cyber criminals are turning their attention to malicious software that mines cryptocurrencies at the expense of users’ mobile devices. These criminals are getting greedier and now use not only malware, but also risk tools, hiding mining capacities in popular football and VPN applications to profit from hundreds of thousands of victims without their knowledge.

 

When a computer show signs of slowing down, many tend to blame viruses. But in the case of smartphones — sluggishness, overheating, or short battery life are usually put down to age. Time to buy a new one, people say. In fact, there is a chance that the problem may lie elsewhere — hidden mining, to be precise.

 

When it comes to mining, computing power matters. Of course, in terms of performance, mobile devices cannot hope to compete with desktop computers armed with the latest graphics cards. But in the eyes of cybercriminals, the sheer number of devices makes up for their lack of power. For those accustomed to feeding off other people’s processing power, the millions of devices out there present an opportunity too juicy to ignore.

 

It’s actually alarmingly simple to infect a smartphone or tablet with a hidden miner. There’s no need for the device owner to knowingly install a miner or download an app from a dubious source. Hidden miners can be picked up by downloading and running seemingly innocuous apps available on the official Google Play store.

 

Miners on Google Play
Typical miners pretending to be handy tools or games don’t perform as described — instead, they show ads and covertly mine for cryptocurrency. But Google Play and other official stores keep out such fakes or, if they do manage to sneak in, quickly find and remove them. Therefore, malicious apps of this sort are distributed mainly through forums and nonofficial stores. The problem for cybercriminals is that too few people download anything from such resources.

 

But they found a way around that particular problem: If an app actually does what is promised in its description, and the malware is neatly disguised, it may slip through. That’s already happened — an attempt to create a smartphone-based botnet bypassed the safeguards on Google Play and a number of other app stores. Kaspersky Lab experts recently found several other specimens as well, this time with built-in miners.

 

The most popular apps we found of this type were soccer-related: a family of apps with names including PlacarTV (placar means score in Portuguese), one of which had been downloaded more than 100,000 times. It contained the Coinhive miner, which mined Monero coins while users streamed games. It’s a clever ruse, and not that easy to spot: Your mind is on the match, and watching videos heats up the phone and drains the battery anyway, just like the miner does, so you’ll have no reason to be suspicious.

 

Our experts also found a miner in a free VPN app called Vilny.net. This malware’s trick was to keep tabs on the phone’s temperature and battery. It then suspended mining as needed to avoid overheating or draining the device and attracting the owner’s attention.

 

A more detailed and technical post on this miner is available on Securelist.

 

Kaspersky Lab has alerted Google about these apps, and the soccer-related ones have been removed from the Google Play store — Vilny.net is still available in the store, though. What’s more, there is no guarantee that some other apps with hidden miners won’t sneak in there in the future. So staying safe from them is up to users.

 

“Our findings show that authors of malicious miners are expanding their resources and developing their tactics and approach to perform more effective crypto-currency mining. They are now using legitimate thematic applications with mining capacities to feed their greed. As such, they are able to capitalize on each user twice – firstly via an ad display, and secondly via discreet crypto-mining,” said Roman Unuchek, security researcher at
Kaspersky Lab.

 

How to guard against hidden miners on Android

  • If your smartphone is behaving oddly, don’t ignore it. If it heats up quickly and loses power for no apparent reason, it might be infected. You can find out if an app has suddenly started eating too much battery with a special app such as Kaspersky Battery Life (available from Google Play for free).
  • When looking for new apps, take the developers of those apps into account. Software from reputable developers is far less likely to contain infections.
  • Disable the ability to install applications from sources other than official app stores
  • Keep the OS version of your device up to date in order to reduce vulnerabilities in the software and lower the risk of attack

RECOMMENDED ARTICLE FOR TECHWORLD


 
Connectivity Issues Lead to Damaged Relationships in 1-in-6 Cases
Techworld Date Posted: 21 September 2018 9:33 AM | 195 Views
Staying connected is now an obligatory part of showing you care. According to a study from Kaspersky Lab, connectivity is now a vital part of our duty to family, friends and loved ones. . See More
 
Connectivity Issues Lead to Damaged Relationships in 1-in-6 Cases
Techworld Date Posted: 9:33 AM | 195 Views
Staying connected is now an obligatory part of showing you care. According to a study from Kaspersky Lab, connectivity is now a vital part of our duty to family, friends and loved ones. See More

 
No Space No Problem. Vertiv SmartCabinet™ Solves IT Challenge for Fitness First-Owned Studio
Techworld Date Posted: 20 July 2017 2:18 PM | 348 Views
Vertiv, formerly Emerson Network Power, has installed its innovative SmartCabinet™to deliver a complete IT infrastructure solution in a compact containment at The Space Studio (owned by Fitness First) in Australia, a significant upgrade from.... See More
 
No Space No Problem. Vertiv SmartCabinet™ Solves IT Challenge for Fitness First-Owned Studio
Techworld Date Posted: 2:18 PM | 348 Views
Vertiv, formerly Emerson Network Power, has installed its innovative SmartCabinet™to deliver a complete IT infrastructure solution in a compact containment at The Space Studio (owned by Fitness First) in Australia, a significant upgrade from...See More

 
Tier One Closes a 7-Figure Foreign Investment to Strengthen Its Presence in South East Asia
Techworld Date Posted: 14 September 2018 3:14 PM | 938 Views
The past few years have seen a widespread boom in the confidence that companies have for esports. Even owners of NBA franchises see the potential that the esports industry has, and have invested heavily.... See More
 
Tier One Closes a 7-Figure Foreign Investment to Strengthen Its Presence in South East Asia
Techworld Date Posted: 3:14 PM | 938 Views
The past few years have seen a widespread boom in the confidence that companies have for esports. Even owners of NBA franchises see the potential that the esports industry has, and have invested heavily...See More

 
10 Tip to Improve Your Internet Privacy
Techworld Date Posted: 31 July 2018 5:09 PM | 524 Views
Massive data breaches, marketers tracking your every step online, shady people exploring the photos you shared in social networks — the list of digital annoyances goes on and on. However, it’s not completely hopeless:.... See More
 
10 Tip to Improve Your Internet Privacy
Techworld Date Posted: 5:09 PM | 524 Views
Massive data breaches, marketers tracking your every step online, shady people exploring the photos you shared in social networks — the list of digital annoyances goes on and on. However, it’s not completely hopeless:...See More

 
Limited Edition Gold Lenovo Legion Y520 Gaming Laptop Now Available in the Philippines
Techworld Date Posted: 5 April 2018 4:53 PM | 702 Views
Lenovo recently announced that the limited edition gold Lenovo Legion Y520 gaming laptop is now available in the Philippines. With its new hardware, it is sure to elevate the gaming experience. It comes with.... See More
 
Limited Edition Gold Lenovo Legion Y520 Gaming Laptop Now Available in the Philippines
Techworld Date Posted: 4:53 PM | 702 Views
Lenovo recently announced that the limited edition gold Lenovo Legion Y520 gaming laptop is now available in the Philippines. With its new hardware, it is sure to elevate the gaming experience. It comes with...See More

 
One Call on WhatsApp Is Enough to Establish Surveillance
Techworld Date Posted: 20 May 2019 9:34 AM | 44 Views
  A recently discovered zero-day vulnerability in the world’s most popular messenger — WhatsApp — allowed hackers to eavesdrop on users, read their encrypted chats, turn on the microphone and camera, and install spyware.... See More
 
One Call on WhatsApp Is Enough to Establish Surveillance
Techworld Date Posted: 9:34 AM | 44 Views
  A recently discovered zero-day vulnerability in the world’s most popular messenger — WhatsApp — allowed hackers to eavesdrop on users, read their encrypted chats, turn on the microphone and camera, and install spyware...See More

 
PH Faces Increasing App-Driven Attacks
Techworld Date Posted: 7 September 2017 1:56 PM | 437 Views
MANILA, PHILIPPINES - The attack surface created by app-driven transformation is expanding rapidly, with 72 percent of the total number of attacks focused on user identities and applications, the gateway to personal data. This.... See More
 
PH Faces Increasing App-Driven Attacks
Techworld Date Posted: 1:56 PM | 437 Views
MANILA, PHILIPPINES - The attack surface created by app-driven transformation is expanding rapidly, with 72 percent of the total number of attacks focused on user identities and applications, the gateway to personal data. This...See More

 
Lax Security Leaves Car Sharing Apps Vulnerable to Attack
Techworld Date Posted: 2 August 2018 1:33 PM | 576 Views
Kaspersky Lab researchers have examined the security of 13 car sharing applications from household manufacturers across the globe – including those from Russia, the US, and Europe.. See More
 
Lax Security Leaves Car Sharing Apps Vulnerable to Attack
Techworld Date Posted: 1:33 PM | 576 Views
Kaspersky Lab researchers have examined the security of 13 car sharing applications from household manufacturers across the globe – including those from Russia, the US, and Europe.See More

 
D-Link Partners with Grab for Free Ride Promo
Techworld Date Posted: 24 April 2019 4:18 PM | 70 Views
D-Link International Pte. Ltd., the leading global provider of networking products, recently partnered with Grab to give away free ride credits for every purchase of selected D-Link products. Every purchase of the DIR-809 Dual-Band.... See More
 
D-Link Partners with Grab for Free Ride Promo
Techworld Date Posted: 4:18 PM | 70 Views
D-Link International Pte. Ltd., the leading global provider of networking products, recently partnered with Grab to give away free ride credits for every purchase of selected D-Link products. Every purchase of the DIR-809 Dual-Band...See More

 
Salesforce Cites Achievements of Meralco Online
Techworld Date Posted: 5 November 2018 9:23 AM | 161 Views
The world's number one customer relationship management (CRM) platform company, Salesforce, cited Meralco Online for its achievements and service to customers.. See More
 
Salesforce Cites Achievements of Meralco Online
Techworld Date Posted: 9:23 AM | 161 Views
The world's number one customer relationship management (CRM) platform company, Salesforce, cited Meralco Online for its achievements and service to customers.See More


Power by

Download Free AZ | Free Wordpress Themes