Cryptojacking malware on websites soars in second quarter 2018

Criminals seem increasingly keen to cause damage without alerting the website owner to any malicious activity

Bitcoin cryptocurrency mining

Sitelock has revealed that the number of sites attacked using cryptojacking has doubled in the second quarter of 2018 compared to the first quarter.

The company explained that criminals are choosing to attack websites using this method because it goes almost completely undetected by the site owner, but can surreptitiously generate income for the hackers. 

Another shocking realisation discussed in the report is that JavaScript files are also being used by criminals more frequently to attack sites. In the second quarter, malicious JavaScript files were used to deploy cryptomining attacks in 16% more cases.

Sitelock examined six million sites to compile its Q2 report and discovered that websites are attacked an average of 58 times a day on average, which was up 16% compared to the previous quarter.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

The report also found that in some cases up to 61% of traffic website owners believe are genuine users are actually bots, which can cause quite some confusion and may well be a reason why businesses are struggling to convert people coming to their site into customers and revenue streams.

However, Sitelock said search engines are making the fight against malware-infected websites harder, only blocking around 17% of websites that are affected from showing up in search results.

"Website owners that continue relying on outwardly facing symptoms or search engine warnings may be missing malware that is attacking their website visitors," Jessica Ortega, site security analyst at Sitelock said.

"This is especially concerning when you consider that 9%, or as many as 1.7 million websites, have a major security vulnerability that could allow attackers to deploy malware on them."

Featured Resources

Digitally perfecting the supply chain

How new technologies are being leveraged to transform the manufacturing supply chain

Download now

Three keys to maximise application migration and modernisation success

Harness the benefits that modernised applications can offer

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

The 3 approaches of Breach and Attack Simulation technologies

A guide to the nuances of BAS, helping you stay one step ahead of cyber criminals

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/business-strategy/mergers-and-acquisitions/354602/xerox-to-nominate-directors-to-hps-board-reports
mergers and acquisitions

Xerox to nominate directors to HP's board – reports

22 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020