The Websites asked the users to enter a CAPTCHA code while stealing device's power
You must be watching Bitcoin prices going up and down even you don't have one, but there is something else that you should worry about. When it comes to the Android phones you can't trust the security 100 percent and that is proven by Malwarebytes. The company known for building anti-malware software has discovered illegal cryptocurrency mining activities. A team from Malwarebytes found that some of the hackers are stealing Android device’s processing power to mine the cryptocurrencies.
Last month the team was working on the testing campaign for hunting down the malware chain on Windows and chrome. During the research, they tested the same process on the Android and it unveiled new scam related to cryptocurrencies. The team found a new malware on the web that redirects the users to pages that consume their device’s processing power for crypto-mining purpose. Once the user lands on the page they need to enter the CAPTCHA code to continue. Until the users enter the asked code, the websites keep swallowing the device’s power to mine the Monero cryptocurrency (XMR). There is a number of domains found by Malwarebytes that are using the same method and CAPTCHA code.
According to the firm, the very first domain was registered in November 2017 just after the Bitcoin started getting the hype due to sudden price variation. Among all, the company identified five identical domains that were registered last month. All these domains are getting almost 800,000 hit every day and users spent an average of 4 minutes on the websites. This lets the crypto-miners steal an Android’s processing power for a significant time.
In case you are not aware of the cryptocurrency mining, it is a process done to place the transactions first in the blockchain by solving a typical mathematical problem that requires huge computer power. For quickly solving the problem and placing the transactions for the crypto - users the miners get rewarded every time.
It is not clear how much money exactly these websites make using this method, but Malwarebytes estimated, few thousand of dollars a month. “While these platforms are less powerful than their Desktop counterparts, there is also a greater number of them out there”, the company wrote in its report. The Malwarebytes asked the Android users to make sure about their device’s safety by saying, “ We strongly advise users to run the same security tools they have on their PC and mobile devices, because unwanted crypto mining is not only a nuisance but can also cause permanent damage.”
Akash Singh Chauhan is a senior writer at MobileAppDaily and he mainly covers all the latest happenings and tweaks in mobile app technology. Being an Engineering graduate he is always compelled to the technology and tries to discover new trends in the tech world. Along with any tech news he also never misses a single episode of ‘Dragon Ball’.Follow