Browser based Crypto-Mining malware has made a dramatic resurgence in 2018 hitting the headlines on several occasions over the past month. Most recently, two major campaigns affecting thousands were reported by The Register with those affected ranging from YouTube to the UK’s Information Commissioner’s Office (Ref 1 Ref 2).
Trend Micro reports an increase as high as 285% in the number of CoinHive miners observed during January (Ref 3 )
Whilst Crypto Mining software is presented as a legitimate enterprise, it’s also a common technique used by Cyber Criminals and other malicious third parties to profit from their attacks. In short, if Crypto Mining software is served up by your site, it is likely the result of a malicious compromise, either directly or against one of your trusted partners.
* We assume that the software in this case is unwanted malware and not intentionally hosted.