Cyber attackers are finding new ways to get what they mainly want — getting rich.
A new pathway was uncovered by a good Samaritan that had its octopus arms into what maybe called the website for the purest of intentions — Make A Wish Foundation.
The intent was to use the computing data of the visitors of the website to mine cryptocurrency and deliver it right into the hackers’ wallets.
Comes close to slaying a unicorn.
‘Embedded in the site was a script using the computing power of visitors to the site to mine cryptocurrency into the cybercriminals’ pockets, making their “wish” to be rich, come “true”. It’s a shame when criminals target anyone but targeting a charity just before the holiday season? That’s low.’ Simon Kenin on Trustwave
Thanks to Trustwave, the malware was removed from the website.
Cryptojacking is getting common and common. With thousands and thousands of malware infected websites churned out by people with evil intent, innocent and institutions with pure and good intent are falling victim. While the act may not be termed illegal as there is no structural laws that cover computing power, it sure is unethical.
The only solid way to avoid letting people use your computing power is using external softwares to detect infected sites. Auditing your activity and regularly updating your softwares can’t keep up with the pace of evil masterminds.
