Scribd
Upload
224 views

Crypto Jacking

Cyber criminals have been using YouTube to distribute a Monero cryptocurrency mining malware called Stantinko. The Stantinko botnet, active since 2012, targets users in Russia, Ukraine, Belarus and Kazakhstan through YouTube channels distributing its cryptojacking module. This malware has infected around 500,000 devices and uses victims' computing resources to mine Monero without their knowledge. YouTube has since removed the infected channels.

Uploaded by

drew
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as RTF, PDF, TXT or read online on Scribd
224 views

Crypto Jacking

Cyber criminals have been using YouTube to distribute a Monero cryptocurrency mining malware called Stantinko. The Stantinko botnet, active since 2012, targets users in Russia, Ukraine, Belarus and Kazakhstan through YouTube channels distributing its cryptojacking module. This malware has infected around 500,000 devices and uses victims' computing resources to mine Monero without their knowledge. YouTube has since removed the infected channels.

Uploaded by

drew
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as RTF, PDF, TXT or read online on Scribd
You are on page 1/ 2

REPORT: CYBER CRIMINALS ARE USING

YOUTUBE TO INSTALL CRYPOJACKING


MALWARE
Slovakian software security firm Eset has uncovered that cyber
criminals behind the Stantinko botnet have been distributing a
Monero (XMR) cryptocurrency mining module via Youtube.

On Nov. 26, the major antivirus software supplier Eset reported


that the Stantinko botnet operators have expanded their criminal
reach from click fraud, ad injection, social network fraud and
password stealing attacks, into installing crypto malware on
victims' devices using Youtube.

Stantinko botnet has been active since at least 2012

The Stantinko botnet, which has been active since at least 2012
and predominantly targets users in Russia, Ukraine, Belarus and
Kazakhstan, reportedly uses YouTube channels to distribute its
cryptojacking module, which mines the privacy-focused crypto
coin Monero on the CPUs of unsuspecting victims.

This cryptocurrency-stealing malware has reportedly infected


around 500,000 devices, and is similar to the recently discovered
malicious malware, Dexphot, malware discovered by Microsoft
that has already infected more than 80,000 computers.
These crypto-hijacking codes steal processing resources, take over
legitimate system processes and disguise the nefarious activity
with the ultimate goal of running a crypto miner on the infected
devices.

Eset informed YouTube, which reportedly responded by removing


all the channels that contained traces of Stantinko’s code.

Malware on Monero’s official website was stealing crypto

In November, Monero’s core development team said that the


software available for download on Monero’s official website
might have been compromised to steal cryptocurrency. A
professional investigator going by the name of Serhack confirmed
that the software distributed after the server was compromised
was indeed malicious

You might also like