Skip to main content

Cryptojacking hackers infected 400 major websites with stealth miners

Malware miners managed to infect more than 400 big websites recently, resulting in the generation of large quantities of cryptocurrency for the attackers. The cryptojackers appear to have taken advantage of a flaw in content management system (CMS) Drupal to install the stealthy mining software under the nose of website owners.

Cryptojacking, the process of running cryptocurrency mining software on someone’s system without them realizing it, has become a hot trend in recent months. It even replaced ransomware as one of the top go-to methods for making money with malware. Although not as impactful to affected victims as ransomware or identity theft, it can still cause slowdowns on a system and potentially damage hardware if allowed to run rampant.

This latest cryptojacking craze has been termed “Drupalgeddon 2” by those who discovered it at BadPackets. It saw the hackers infiltrate websites that were running outdated and vulnerable versions of the Drupal CMS to install the cryptomining software Coinhive, as per PCMag. Although designed to allow website owners to monetize their users in ways other than advertising, Coinhive has been used by hackers to take advantage of vulnerable websites and their unwitting users.

A subsequent visit to sites affected by this latest attack forced visitors to run the software, generating cryptocurrency for the hackers. Affected sites included PC manufacturer Lenovo, the San Diego Zoo, and the government website for Chihuahua, Mexico. Some of these have now patched up the holes and removed the Coinhive software, though hundreds still have yet to do so.

The flaw that allowed the hackers to take advantage of this has been known about since March and Drupal has been updated by the developers since. However, not all websites have installed the necessary patches, which has left many vulnerable. Although 400-plus sites were infected in this latest attack, with more than a million sites using the CMS globally, there is real potential for further attacks of increased scope.

If you’re interested in mining cryptocurrencies yourself — legally — know that it’s far from easy to turn a profit. If you have cheap electricity and enough investment funds though, it is possible. Here’s how to get started.

If you’d rather just play a game that simulates it though, there’s always Bitcoin Tycoon.

Editors' Recommendations

Jon Martindale
Jon Martindale is the Evergreen Coordinator for Computing, overseeing a team of writers addressing all the latest how to…
The best bitcoin alternatives

Bitcoin might still be considered the flagship cryptocurrency that many other alternative currencies sail in the wake of, but that's not to say it's the only viable one. With more than 2,000 different cryptocurrencies out there, knowing which ones to put your money into isn't easy.

Do you opt for one with a low price so you can buy a lot of them in the hopes of making a fortune? Do you buy the ones with low transaction fees or confirmation times to speed up transfers? We'll give you the best Bitcoin alternatives based on features and current values. Whether you're looking to use your cryptocurrency to pay for items online or want to put some aside to create a crypto-nest egg, these are the best Bitcoin alternatives.

Read more
How Coinbase stopped the Twitter Bitcoin hack from being even worse
twitter and laptop hacked

The hackers behind last week's massive Twitter security breach made off with more than $100,000 through their Bitcoin giveaway scam. But it could have been much worse.

Quick responses from Twitter and Bitcoin exchanges like Coinbase reportedly kept a combined $300,000 away from the hackers' pockets.

Read more
Dozens of major Twitter accounts hacked in massive Bitcoin scam
Twitter Bitcoin

Update: Late Wednesday night, Twitter revealed what it knows so far about the hack that targeted dozens of high-profile accounts on its service -- and it isn't much.

Dozens of high-profile Twitter accounts were seemingly hacked in a massive Bitcoin scam on Wednesday afternoon, with each account tweeting out messages offering anyone thousands of dollars worth of cryptocurrency. After more than an hour, the social network disabled tweeting from verified accounts in order to stop the message from spreading.

Read more