Home / Crypto Currency / Cryptojacking Falls in Second Quarter, Coinciding with Crypto Bear Market: Research

Cryptojacking Falls in Second Quarter, Coinciding with Crypto Bear Market: Research

CryptocoinTrader Malware Spies on PC Users


This year’s second quarter witnessed a lull in cybercrime, but cybercriminals continue to experiment with ransomware, according to Malwarebytes Labs in its second quarter report.

Malware activity posted a decrease in both business and consumer categories in the second quarter, the report noted. But while the volume of activity was lower, the quality of the attacks was anything but.

Malwarebytes Labs based its conclusions on data from April through June along with telemetry from its business and consumer products that are used in millions of machines.

Malware Sophistication Rises

Ransomware and cryptomining demonstrated a greater level of sophistication in the second quarter.

Cryptomining, for its part, took the lead in consumer detections for the quarter, followed by adware. Adware, for its part, rose by 19% in the quarter.

Spyware activity dropped from the lead business detection to number five, shedding 40% in its activity, while banking Trojans held on to the number two spot, even though detections in this segment fell in half.

Backdoor Detections Increase

Backdoor detections, however, jumped in both the consumer and business sectors, as consumer detections rose by 442%.

A spike in backdoor malware detections is believed to be due to a campaign Malwarebytes Labs refers to as Backdoor.Vools. The malware is usually noticed installing cryptocurrency miners after communicating with a command and control server.

The WannaCry and NotPetya outbreaks in 2017 have yet to be matched in impact and distribution volume, the report said, but attacks from VPNFilter, SamSam and others indicate higher level attacks could be in store for the balance of the year.

VPNFilter malware, which drops multi-stage actions on consumers and small offices by the hundreds of thousands, posted an increase, generating half a million detections in the quarter.

VPNFilter is able to remain undetected by modern security tools. In addition to gaining passwords and usernames, it can add artificial data to deceive users while stealing information. The malware can also conduct DDoS attacks or install other software.

SamSam, for its part, destroyed files for the city of Atlanta and attacked Hancock Health, and it remains evasive on account of the targeted manner that attackers use to deliver it. SamSam is believed to have taken in more than $1 million. The group behind it is believed to study potential targets to learn the value of their information. They then price the recovery in a way that makes recovery a more economical option for the victim.

GrandCrab was cited as the leading ransomware variant, waged via email. The variant has moved to the Magnitude exploit kit for distribution. Magnitude has started to deploy a fileless technique for loading the ransomware payload, which makes it harder to detect.

Client side and server side cryptomining continue due to content management system vulnerabilities the report noted. It is not easy to upgrade a CMS on account of plugins, themes and other functions that can stop working when the core is updated.

Criminals Target Personal Data

Cybercriminals are also focusing more on personally identifiable information (PII) the report noted.

Malwarebytes Labs first noticed scammers stealing PII in bitcoin scams. Bitcoin, the report noted, is largely unregulated, has limited fraud protection, and the exchanges have poor support.

Because user awareness of scams has increased, scammers are trying to steal email accounts, passwords and bank account information.

The European Union’s new General Data Protection Regulation laws are also believed to be raising interest in PII theft since such data is popular on the black market.

Malwarebytes Labs offers a more extensive report on cybercrime tactics and techniques for the second quarter on its website.

Featured image from Shutterstock.

Follow us on Telegram or subscribe to our newsletter here.
Join CCN's crypto community for $9.99 per month, click here.
Want exclusive analysis and crypto insights from Hacked.com? Click here.
Open Positions at CCN: Full Time and Part Time Journalists Wanted.
Read more

Check Also

Major Online Rental Platform Allows Users to be Paid in Ripple

Omni, the online item rental and storage management startup, is now allowing its users to get paid in Ripple, capitalizing off of the cryptocurrency boom. The addition of the XRP payment method comes after the startup raised $25 million in XRP this past January. The company will be paying users out of their own stash of XRP, which is worth significantly less than it was in January, but users will still have the option to cash out in USD if they aren’t interested in the volatility of cryptocurrency. Omni’s founder and CEO, Tom McLeod, spoke to TechCrunch about the company’s latest move, confidently expressing that all companies should have a crypto strategy in order to prepare for the future. “I think any company scaling today has to have a crypto strategy. This is the start of ours,” he said. Omni originally began as an item storage solution that is significantly more efficient and cost effective than traditional storage methods, like renting a storage unit. When a user has an item that they need stored, Omni sends a representative to pick up, photograph, and transport the item to a large storage facility, which proves to be significantly cheaper than renting an entire storage unit for one item. Once a user needs the item (or items) back, they can request to have them delivered to their residence within a few hours of sending the request, 24/7. The service has since added another, more profitable, feature, called Marketplace, that allows users to rent out their unused items while generating side income. Omni is now requiring users to itemize the unused items that they are looking to rent, rather than grouping them in one container for Omni to take. User’s looking to offload and rent out items grouped in a suitcase or a large container now must pay double the storage fee, while collecting the same rental profits from the items in the container. “Marketplace is driving Omni growth, and has always been the core of the long-term vision. Closed containers don’t grow the business, but move almost as much. We’re basically the same price as competitors now for them. It also makes it potentially more likely that small items will be itemized. We’re going to launch kits/playlists that will allow for grouping in the coming months,” McLeod explained. Omni’s services are currently available in San Francisco and Portland, but will likely expand to other major cities in the coming months. Ripple Could Benefit Both Omni and Users In addition to offloading their bag of XRP, both users and Omni can benefit by collecting profits in cryptocurrency. Users can unlock liquidity in their items while growing their investment portfolio, while Omni can lower their transaction fees that they are forced to pay when users cash out and transfer USD. McLeod explained the double-sided benefits of using XRP, saying: “In every other crypto investment scenario, you have to risk your cash — this way you can put items you already own to work for you and have them earn XRP while you relax. With this integration, you can basically double dip on ownership-as-investment by both unlocking liquidity early and investing some or all of the proceeds back into the crypto markets.” Featured image from Shutterstock The post Major Online Rental Platform Allows Users to be Paid in Ripple appeared first on NewsBTC.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Disclaimer: Trading in bitcoins or other digital currencies carries a high level of risk and can result in the total loss of the invested capital. theonlinetech.org does not provide investment advice, but only reflects its own opinion. Please ensure that if you trade or invest in bitcoins or other digital currencies (for example, investing in cloud mining services) you fully understand the risks involved! Please also note that some external links are affiliate links.