Home / Crypto Currency / Cryptojacking Falls in Second Quarter, Coinciding with Crypto Bear Market: Research

Cryptojacking Falls in Second Quarter, Coinciding with Crypto Bear Market: Research

CryptocoinTrader Malware Spies on PC Users


This year’s second quarter witnessed a lull in cybercrime, but cybercriminals continue to experiment with ransomware, according to Malwarebytes Labs in its second quarter report.

Malware activity posted a decrease in both business and consumer categories in the second quarter, the report noted. But while the volume of activity was lower, the quality of the attacks was anything but.

Malwarebytes Labs based its conclusions on data from April through June along with telemetry from its business and consumer products that are used in millions of machines.

Malware Sophistication Rises

Ransomware and cryptomining demonstrated a greater level of sophistication in the second quarter.

Cryptomining, for its part, took the lead in consumer detections for the quarter, followed by adware. Adware, for its part, rose by 19% in the quarter.

Spyware activity dropped from the lead business detection to number five, shedding 40% in its activity, while banking Trojans held on to the number two spot, even though detections in this segment fell in half.

Backdoor Detections Increase

Backdoor detections, however, jumped in both the consumer and business sectors, as consumer detections rose by 442%.

A spike in backdoor malware detections is believed to be due to a campaign Malwarebytes Labs refers to as Backdoor.Vools. The malware is usually noticed installing cryptocurrency miners after communicating with a command and control server.

The WannaCry and NotPetya outbreaks in 2017 have yet to be matched in impact and distribution volume, the report said, but attacks from VPNFilter, SamSam and others indicate higher level attacks could be in store for the balance of the year.

VPNFilter malware, which drops multi-stage actions on consumers and small offices by the hundreds of thousands, posted an increase, generating half a million detections in the quarter.

VPNFilter is able to remain undetected by modern security tools. In addition to gaining passwords and usernames, it can add artificial data to deceive users while stealing information. The malware can also conduct DDoS attacks or install other software.

SamSam, for its part, destroyed files for the city of Atlanta and attacked Hancock Health, and it remains evasive on account of the targeted manner that attackers use to deliver it. SamSam is believed to have taken in more than $1 million. The group behind it is believed to study potential targets to learn the value of their information. They then price the recovery in a way that makes recovery a more economical option for the victim.

GrandCrab was cited as the leading ransomware variant, waged via email. The variant has moved to the Magnitude exploit kit for distribution. Magnitude has started to deploy a fileless technique for loading the ransomware payload, which makes it harder to detect.

Client side and server side cryptomining continue due to content management system vulnerabilities the report noted. It is not easy to upgrade a CMS on account of plugins, themes and other functions that can stop working when the core is updated.

Criminals Target Personal Data

Cybercriminals are also focusing more on personally identifiable information (PII) the report noted.

Malwarebytes Labs first noticed scammers stealing PII in bitcoin scams. Bitcoin, the report noted, is largely unregulated, has limited fraud protection, and the exchanges have poor support.

Because user awareness of scams has increased, scammers are trying to steal email accounts, passwords and bank account information.

The European Union’s new General Data Protection Regulation laws are also believed to be raising interest in PII theft since such data is popular on the black market.

Malwarebytes Labs offers a more extensive report on cybercrime tactics and techniques for the second quarter on its website.

Featured image from Shutterstock.

Follow us on Telegram or subscribe to our newsletter here.
Join CCN's crypto community for $9.99 per month, click here.
Want exclusive analysis and crypto insights from Hacked.com? Click here.
Open Positions at CCN: Full Time and Part Time Journalists Wanted.
Read more

Check Also

Bitcoin Price Watch: Currency Briefly Falls Below the $6,000 Mark Before Recovering

At press time, the father of cryptocurrency is trading for just over $6,000. This is about $200 less than where it stood during yesterday’s afternoon hours. The coin is continuing to fall deeper and deeper into red territory, though this price is an improvement over where it stood during the early morning, when it fell below $6,000. The currency is now just a few steps above its lowest point of the year, which it hit on June 18 with a price of just over $5,770. The cryptocurrency market cap has shed approximately $21 billion off its back in the last 24 hours, and it appears the crypto space is being targeted by massive sell-offs. In other words, bitcoin is not alone in its present state. The currency is struggling to maintain its position on the financial ladder, yet it’s still doing relatively well in comparison with entities like Ethereum, which has fallen below the $300 mark – the lowest it’s been all year. Also, Ripple – the third-largest cryptocurrency by market cap – has also fallen by roughly 14 percent. Charles Hayter, CEO of CryptoCompare, is blaming the SEC’s decision to postpone any action towards the bitcoin ETF submitted by VanEck SolidX. “This has snowballed negative investor sentiment,” he explains. Some, however, are refusing to give in to all the hype and say that bitcoin still has the power to unite cryptocurrencies across the board. One Reddit user for example, recently posted his thoughts regarding the recent sell-off. “Am I selling now?” he asks defiantly. “No way. Why not? Because bitcoin is not broken. Nothing bad happened to bitcoin. It still works. Will there be bumps along the way? What do you think we’re experiencing now? Some of [you]get to decide: are you going to be a coward or not?” Hayter further commented that the bitcoin arena is only going through ups and downs because it is still a developing market; that it holds a strong position in the financial infrastructure, but needs more time to mature: “Bitcoin and its ilk are opening up a new arena of finance. The hope and speculation that gripped the market last year has been eroded in the last few months. That said, under the hood, a lot of work has been moving ahead to form the routes to incumbent institutions and to provide them with the tools, mechanisms and assurance they need for entering the cryptocurrency space. It’s only a matter of time before the crypto sphere becomes part of the mainstream, but it needs to do a lot of growing up in the process.” Bitcoin Charts by TradingView

Leave a Reply

Your email address will not be published. Required fields are marked *

Disclaimer: Trading in bitcoins or other digital currencies carries a high level of risk and can result in the total loss of the invested capital. theonlinetech.org does not provide investment advice, but only reflects its own opinion. Please ensure that if you trade or invest in bitcoins or other digital currencies (for example, investing in cloud mining services) you fully understand the risks involved! Please also note that some external links are affiliate links.