Skip to main content

Cryptojacking turns your PC into a Bitcoin mine, but you won’t see a cent

Image used with permission by copyright holder

(in)Secure is a weekly column that dives into the rapidly escalating topic of cybersecurity.

Cryptocurrency has fought for its reputation ever since its creation. Bitcoin fans have always had to defend against accusations that it’s only purpose is for illicit activities — that it’s a currency for criminals. Bill Gates even argued it has caused death in his recent Reddit AMA.

Now, cryptocurrency has yet another problem to deal with: cryptojacking. It’s the act of hacking a computer for use in cryptocurrency mining, usually without the owner knowing about it. It’s the newest evolution of malware — and it looks set to spread like wildfire.

A brave, new world

In February, Salon announced a new crowdfunding campaign that caught headlines across the internet. You can donate your computing power through cloud mining to help support the publication. It doesn’t require the installation of software, or even setting up an account.

Just like that, an alternative to paid subscriptions and ad-based revenue has appeared. Cloud mining was already catching on, and now it’s finding new, interesting use cases.

Also in February, security researcher Scott Helme published his findings on the dark side of the technology. Without getting consent from either the owner of the website or visitors, cryptocurrency scripts can be hacked into websites, which then hack visitor’s CPU power. That’s cryptojacking.

The past year has witnessed several large-scale attacks on websites like the LA Times, Tesla, and Politifact, but recently the trend has escalated in an even more startling way. Research shows that thousands of legitimate websites, including some that belong to government institutions, have been cryptojacked.

How? Helme puts it this way: “If you want to load a cryptominer on 1,000+ websites, you don’t attack 1,000+ websites, you attack the one website that they all load content from.” In one case, an assistive technology called Text Help was compromised. Any website that used it then cryptojacked visitors, without either the website owners or visitors having a clue.

https://twitter.com/Scott_Helme/status/962684239975272450

Another recent report claims 50,000 websites already have crypto-mining malware ready to steal your computer’s power without your knowledge. Seven thousand websites have been discovered to contain this strain of cryptojacking on the WordPress platform alone.

Both Salon and the hackers behind recent attacks use the same tool — a JavaScript miner called CoinHive. It can be embedded on a webpage and functions in the visitor’s browser window. Hackers have taken the script and implemented it to immediately force visitors to donate their CPU power toward mining Monero coins, or XMR. (What’s that, you ask? Read our guide to the best Bitcoin alternatives).

The internet could become one big, illicit crypto-mining operation.

That wasn’t CoinHive’s intent. Instead, its developers “dream about it as an alternative to micro payments, artificial wait time in online games, intrusive ads, and dubious marketing tactics.” It’s a rather clever idea, really. The average PC is much more powerful than needed to browse the web, so why not use a bit of that performance to pay for content? The creators of CoinHive told Motherboard recently that “their reputation couldn’t be worse,” lamenting that they didn’t see the potential of cryptojacking at the time.

To be clear, cryptojacking isn’t an easy way for hackers to get rich. If a site has 10–20 active miners all day, CoinHive claims “you can expect a monthly revenue of about 0.3 XMR (~$86).” It’s relatively easy for hackers to implement, however, and the anonymous nature of cryptocurrency makes the payoff hard to trace. Consider it low reward, but very low risk. So long as cryptocurrencies keep rising in value, cryptomining — and its dark side, cryptojacking — will continue to spread.

This is only the beginning

It’s not hard to imagine cryptojacking’s future. Today, ads are everywhere you look on the internet, and off. Ads appear everywhere from YouTube to free software. Cloud cryptomining could provide an alternative, letting you “donate” some processor power for free web content or software.

We could also see a future where cryptojacking is constantly in the news — and in much greater potency. The internet could become one big illicit crypto-mining operation, and the fight against that won’t be easy. Hackers will find efficient and more subtle ways of secretly contorting innocent CPUs to make a quick buck. Right now, it’s not yet possible to mine cryptocurrency in-browser using a visitor’s GPU, which would provide much more substantial hashing power. Such a thing can’t be too far away.

Image used with permission by copyright holder

And it doesn’t stop with in-browser mining.

Imagine the way adware works today. You’re installing a piece of software, and you quickly click through a few checkboxes to complete the installation. Without being fully aware of it, you’ve installed a piece of software that generates revenue for a company by inserting ads into your browser. Because it’s invisible, cryptojacking malware tougher to deal with. You might not even notice it quietly humming along in the background as it slows your computer and fills someone’s crypto-wallet.

This is certain to happen in a future where cryptocurrency cements its position as an online currency. It’ll give developers and website owners a new way to make legitimate cash from their work — and profit-driven hackers another potent tool in their toolbox.

Luke Larsen
Former Digital Trends Contributor
Luke Larsen is the Senior Editor of Computing, managing all content covering laptops, monitors, PC hardware, Macs, and more.
This Lenovo ThinkPad is normally $3,229 — today it’s $1,453
A press photo of the ThinkPad X1 Carbon Gen 11.

If you're on the hunt for a powerful but portable laptop, you may want to consider going for the Lenovo ThinkPad X1 Carbon Gen 11. It's tagged with an estimated value of $3,229 by Lenovo, but it can be yours for $1,453 for huge savings of $1,776. It's rare to see a 55% discount from laptop deals, so you wouldn't want to miss this chance to take advantage of this bargain, but you're going to have to hurry because we're not sure how much time is remaining before this clearance sale ends.

Why you should buy the Lenovo ThinkPad X1 Carbon Gen 11 laptop
The Lenovo ThinkPad X1 Carbon Gen 13 is already out in the market, but that doesn't make the Lenovo ThinkPad X1 Carbon Gen 11 obsolete. In fact, the laptop still provides reliable performance with its 13th-generation Intel Core i7 processor, integrated Intel Iris Xe Graphics, and 32GB of RAM that's necessary for handling intensive applications or creating content, according to our laptop buying guide. The device runs on Windows 11 Pro out of the box for access to the operating system's more advanced features, and it's got a 512GB SSD for ample storage space for your files and apps.

Read more
Meta’s new ‘Llamacon’ event is all about open-source AI
A silhouetted person holds a smartphone displaying the Facebook logo. They are standing in front of a sign showing the Meta logo.

Meta announced on Tuesday that it is launching a new developers conference in April, dubbed "Llamacon," that will focus on “open source AI developments.”

The event is scheduled to take place April 29, 2025 and comes on the heels of "the unprecedented growth and momentum of our open-source Llama collection of models and tools," in an announcement post. The company has not shared any additional details, such as where the conference will take place or how much ticket prices will run, but the company promises to share more details "in the coming weeks."

Read more
The Alienware x16 R2 gaming laptop with RTX 4070 is $845 off
The interior and exterior of the Alienware x16 R2 gaming laptop.

The gaming laptops that are worth buying fetch high prices, but that also means there's a chance for huge discounts from gaming laptop deals. Here's a great example: the Alienware x16 R2 with the Nvidia GeForce RTX 4070 graphics card at $845 off from Dell, slashing its price from $2,945 to $2,100. It's still fairly expensive, but that's actually excellent value for a device of this caliber. We highly recommend acting fast if you're interested though, as tomorrow may already be too late to take advantage of the savings.

Why you should buy the Alienware x16 R2 gaming laptop
The Alienware x16 R2 is a gaming laptop that will let you play the best PC games at their most demanding settings, while also setting you up for the upcoming PC games of the next several years. Along with the Nvidia GeForce RTX 4070 graphics card, it's powered by the Intel Core Ultra 9 185H processor and 32GB of RAM that's the sweet spot for high-end gamers, according to our guide on how much RAM do you need. It comes with Windows 11 Pro pre-installed in its 2TB SSD, while its 16-inch screen offers Full HD+ resolution, a 480Hz refresh rate, and support for Nvidia's G-Sync to give justice to the machine's capabilities.

Read more