The global outbreak in malicious cryptocurrency mining that unfolded in 2018 saw the number of attacks increase by more than 83%, with over five million users attacked online in the first three quarters of the year, compared to 2.7 million over the same period in 2017. The major driver behind the crypto gold rush was the installation and use of unlicensed software and content, according to Kaspersky Lab.

 

In 2018, malicious cryptocurrency mining prevailed over the main threat of the last few years: ransomware. The number of internet users attacked by malicious cryptocurrency mining software increased steadily during the first half of the year, peaking in March, with around 1.2 million users a month coming under attack.

 

Kaspersky Lab experts have investigated the economic background of the sudden onset of crypto-mining fever to discover what drove the global distribution of this threat. They analyzed the regulatory landscape, electricity prices in the top 10 countries targeted by crypto miners and main infection vectors for the popular malware families.

 

The analysis shows that neither cryptocurrency legislation nor the cost of power has a significant impact on the spread of malicious mining malware. However, the investigation of malware families reveals that they mainly infected devices by duping users into installing pirated software and unlicensed content.

 

“Our analysis of the economic background of malicious crypto mining and the reasons for its widespread presence in certain regions revealed a clear correlation: the easier it is to distribute unlicensed software, the more incidents of malicious crypto miner activity were detected. In short, an activity not generally perceived as dangerous: the downloading and installation of dubious software, underpins what is arguably the biggest cyberthreat story of the year – malicious crypto mining,” notes Evgeny Lopatin, Security Expert at Kaspersky Lab.

 

Other key findings from the report include:

 

  • The total number of users who encountered miners rose by more than 83% from 2,726,491 in 2017 to 5,001,414 in 2018;

 

  • The share of miners detected, from the overall number of threats detected also grew, from 5% in 2017 to 8% in 2018;

 

  • The share of miners detected, from the overall risk tool detections is also on the rise – from 9% in 2017 to 17% in 2018;

 

  • The total number of users who encountered mobile miners also grew, increasing by over five times from 1,986 in 2017 to 10,242 in 2018.

 

To reduce the risk of infection with miners, consumers and businesses are advised to:

 

      1. Always keep software updated on all the devices you use. To prevent miners from exploiting vulnerabilities, use tools that can automatically detect vulnerabilities and download and install patches.
      2. For personal devices, use a reliable consumer security solution and remember to keep key features – such as System Watcher – switched on.
      3. Don’t overlook less obvious targets, such as queue management systems, POS terminals, and even vending machines. As the miner that relied on the EternalBlue exploit shows, such equipment can also be hijacked to mine cryptocurrency.
      4. Use application control to track malicious activity in legitimate applications. Specialized devices should be in Default Deny mode. Use dedicated security solution, such as Kaspersky Endpoint Security for Business that includes these functions.
      5. To protect the corporate environment, educate your employees and IT teams, keep sensitive data separate, and restrict access.

The full text of the Story of the Year 2018: Cryptocurrency miners is available here.

 

Read more about ransomware as Story of the Year 2017 here.

 

Read more about how malicious cryptocurrency mining displaced here.

 

Read more about upcoming cryptocurrencies developments in 2019 here.

 

The report forms part of the annual Kaspersky Security Bulletin. Other sections of the bulletin include the Threat Predictions for 2019 available here, and the annual Review and Statistics, which will be available in December.

 


RECOMMENDED ARTICLE FOR TECHWORLD


 
Roaming Mantis Extends DNS Hijacking Attacks from Asia to Rest of World, Adds Crypto-Mining
Techworld Date Posted: 18 May 2018 2:23 PM | 249 Views
On 16 April, Kaspersky Lab researchers reported on a new Android malware distributed through a domain name system (DNS) hijacking technique and targeting mainly smartphones in Asia. Four weeks on, the threat continues to.... See More
 
Roaming Mantis Extends DNS Hijacking Attacks from Asia to Rest of World, Adds Crypto-Mining
Techworld Date Posted: 2:23 PM | 249 Views
On 16 April, Kaspersky Lab researchers reported on a new Android malware distributed through a domain name system (DNS) hijacking technique and targeting mainly smartphones in Asia. Four weeks on, the threat continues to...See More

 
Kingston Encrypted USB Drives Are Key Components of Impending GDPR Compliance
Techworld Date Posted: 22 May 2018 10:29 AM | 571 Views
Kingston, a world leader in memory products and technology solutions, has been at the forefront of how the new General Data Protection Regulation (GDPR) cybersecurity regulations effective this month will affect anyone who processes.... See More
 
Kingston Encrypted USB Drives Are Key Components of Impending GDPR Compliance
Techworld Date Posted: 10:29 AM | 571 Views
Kingston, a world leader in memory products and technology solutions, has been at the forefront of how the new General Data Protection Regulation (GDPR) cybersecurity regulations effective this month will affect anyone who processes...See More

 
Russian-Speaking APTs Turla and Sofacy Share Malware Delivery Scheme, and Overlap Some Targets in Asia
Techworld Date Posted: 10 October 2018 4:10 PM | 149 Views
Kaspersky Lab researchers monitoring the various clusters of the long standing, Russian-speaking threat actor, Turla (also known as Snake or Uroburos) have discovered that the most recent evolution of its KopiLuwak malware is delivered.... See More
 
Russian-Speaking APTs Turla and Sofacy Share Malware Delivery Scheme, and Overlap Some Targets in Asia
Techworld Date Posted: 4:10 PM | 149 Views
Kaspersky Lab researchers monitoring the various clusters of the long standing, Russian-speaking threat actor, Turla (also known as Snake or Uroburos) have discovered that the most recent evolution of its KopiLuwak malware is delivered...See More

 
Sing Your Way to Security: Unique, Memorable Passwords Made Stronger than Constant Change, Says Kaspersky Lab Researchers
Techworld Date Posted: 2 February 2019 10:14 AM | 57 Views
To mark Change Your Password Day, 2019, Kaspersky Lab’s security researchers are advising users that unique, memorable passwords are stronger and more effective than regularly changing account passwords when it comes to keeping data.... See More
 
Sing Your Way to Security: Unique, Memorable Passwords Made Stronger than Constant Change, Says Kaspersky Lab Researchers
Techworld Date Posted: 10:14 AM | 57 Views
To mark Change Your Password Day, 2019, Kaspersky Lab’s security researchers are advising users that unique, memorable passwords are stronger and more effective than regularly changing account passwords when it comes to keeping data...See More

 
HyperX Reveals Licensed Headset for PlayStation®4 at ESGS for the First Time in Philippines
Techworld Date Posted: 26 October 2018 4:15 PM | 125 Views
HyperX, the gaming division of Kingston Technology, joins ESGS at the SMX Convention Center, Pasay City in Philippines from October 26th to 28th.. See More
 
HyperX Reveals Licensed Headset for PlayStation®4 at ESGS for the First Time in Philippines
Techworld Date Posted: 4:15 PM | 125 Views
HyperX, the gaming division of Kingston Technology, joins ESGS at the SMX Convention Center, Pasay City in Philippines from October 26th to 28th.See More

 
Nearly Half of Advanced Targeted Attacks in Q3, 2017 Came from Chinese-Speaking Actors
Techworld Date Posted: 23 November 2017 3:51 PM | 214 Views
The third quarter of 2017 clearly demonstrated that Chinese-speaking actors have not “disappeared” and are still very much active, conducting cyber-espionage campaigns against a wide range of countries and industry verticals. . See More
 
Nearly Half of Advanced Targeted Attacks in Q3, 2017 Came from Chinese-Speaking Actors
Techworld Date Posted: 3:51 PM | 214 Views
The third quarter of 2017 clearly demonstrated that Chinese-speaking actors have not “disappeared” and are still very much active, conducting cyber-espionage campaigns against a wide range of countries and industry verticals. See More

 
PLDT Offers Lowest Call Rate to All Networks
Techworld Date Posted: 12 April 2017 2:25 PM | 259 Views
Leading telecoms and digital services provider, PLDT, introduces its lowest call plan offer, the All Net Fam Call 299, starting April. The All Net Fam Call 299 allows subscribers to make 100 minutes of landline.... See More
 
PLDT Offers Lowest Call Rate to All Networks
Techworld Date Posted: 2:25 PM | 259 Views
Leading telecoms and digital services provider, PLDT, introduces its lowest call plan offer, the All Net Fam Call 299, starting April. The All Net Fam Call 299 allows subscribers to make 100 minutes of landline...See More

 
Lenovo Addresses Shifting Workspace Needs
Techworld Date Posted: 23 March 2018 1:11 PM | 356 Views
Lenovo (HKSE: 992) (ADR: LNVGY), the world’s leading PC manufacturer, launched its 8th-generation Lenovo ThinkPads and ThinkStations–specifically designed to provide enhanced agility and performance to support the ever-evolving workspace spurred by millennial workers.. See More
 
Lenovo Addresses Shifting Workspace Needs
Techworld Date Posted: 1:11 PM | 356 Views
Lenovo (HKSE: 992) (ADR: LNVGY), the world’s leading PC manufacturer, launched its 8th-generation Lenovo ThinkPads and ThinkStations–specifically designed to provide enhanced agility and performance to support the ever-evolving workspace spurred by millennial workers.See More

 
Kaspersky Lab Appoints MSI-ECS Philippines to Boost Growth in B2B Market
Techworld Date Posted: 8 January 2019 1:37 PM | 72 Views
  In line with Kaspersky Lab’s strategy to aggressively strengthen its growth in the enterprise market, the global cybersecurity company has announced its partnership with MSI-ECS Philippines.   MSI-ECS is one of the biggest.... See More
 
Kaspersky Lab Appoints MSI-ECS Philippines to Boost Growth in B2B Market
Techworld Date Posted: 1:37 PM | 72 Views
  In line with Kaspersky Lab’s strategy to aggressively strengthen its growth in the enterprise market, the global cybersecurity company has announced its partnership with MSI-ECS Philippines.   MSI-ECS is one of the biggest...See More

 
PLDT Hosts Regional Telecom Leaders in First FTTH APAC Conference in PH
Techworld Date Posted: 8 May 2018 5:03 PM | 217 Views
Manila, Philippines – Telco and digital services leader PLDT is all set to host the Philippines’ first FTTH APAC Conference which will take place on May 8 to 10, 2018 at the Shangri La.... See More
 
PLDT Hosts Regional Telecom Leaders in First FTTH APAC Conference in PH
Techworld Date Posted: 5:03 PM | 217 Views
Manila, Philippines – Telco and digital services leader PLDT is all set to host the Philippines’ first FTTH APAC Conference which will take place on May 8 to 10, 2018 at the Shangri La...See More


Power by

Download Free AZ | Free Wordpress Themes