acm-header
Sign In

Communications of the ACM

ACM TechNews

Hackers Hide Cryptocurrency Mining Malware in Adobe Flash Updates


View as: Print Mobile App Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook
The malicious mining bot hides in a fake Adobe Flash updater.

Researchers at Palo Alto Networks have discovered a fake Adobe Flash updater that installs a malicious cryptocurrency mining bot.

Credit: tnwcdn.com

Palo Alto Networks researchers have discovered a fake Flash updater that purports to install a legitimate Flash update, but actually installs a malicious cryptocurrency mining bot that mines the privacy coin Monero.

Because the program really installs a genuine Flash update, many users may be unaware their central processing unit could now by mining cryptocurrency for someone else.

When searching for fake Flash updates, the researchers found 113 instances of files with the "AdobeFlashPlayer" prefix hosted on non-Adobe servers.

The team suspects users are directed to these files via spoof URLs, but they have not been able to confidently conclude how victims arrive at the URLs in the first place.

Previous research suggests more than $250,000 of Monero is mined through illegitimate browser-based mining scripts every month.

From The Next Web
View Full Article

 

Abstracts Copyright © 2018 Information Inc., Bethesda, Maryland, USA


 

No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account