With the booming value of cryptocurrency, many hackers and nefarious are rolling out schemes to unwittingly trick regular web users into mining for them. The latest scheme to dupe people into mining cryptocurrency is taking advantage of Facebook Messenger via some slick

The malware being distributed via Messenger is mining Monero, an to the wildly valuable and volatile Bitcoin. Security researchers from Trend Micro are calling the malware Digmine and are saying that it could also help perpetrators to take over a Facebook account. The Digmine malware is disguised to look like a video file being shared over messenger.

The only way the malware can spread is by the desktop version of Messenger when used on Google Chrome. Opening the video file on Messenger running on any other platform won’t result in an infection. The malware can give hackers control of your account which can result in slowing of your computer and the ability for the hackers to target people on your friends list.

“If the user’s Facebook account is set to log in automatically, Digmine will manipulate Facebook Messenger in order to send a link to the file to the account’s friends,” the researchers said. “The abuse of Facebook is limited to propagation for now, but it wouldn’t be implausible for attackers to hijack the Facebook account itself down the line.”

Hackers who are hijacking devices to mine cryptocurrency are becoming more and more common as the value of the currencies grow rapidly in the current market. There are hackers targeting just about every platform out there with the Loapi Android malware enslaving smartphones to mine cryptocurrency and the Coinhive monero mining malware infecting Google Play. Earlier this month, a report surfaced that claimed over a billion video streamers were unwittingly mining cryptocurrency. Some browsers are trying to block these new attacks, as Opera 50 has beefed up its own security to help prevent Monero cryptojacking.

‘).insertAfter(jQuery(‘#initdisqus’));
}
loadDisqus(jQuery(‘#initdisqus’), disqus_identifier, url);

}
else {
setTimeout(function () { disqusDefer(); }, 50);
}
}

disqusDefer();

function loadDisqus(source, identifier, url) {

if (jQuery(“#disqus_thread”).length) {
jQuery(“#disqus_thread”).remove();
}
jQuery(”).insertAfter(source);

if (window.DISQUS) {

DISQUS.reset({
reload: true,
config: function () {
this.page.identifier = identifier;
this.page.url = url;
}
});

} else {

//insert a wrapper in HTML after the relevant “show comments” link

disqus_identifier = identifier; //set the identifier argument
disqus_url = url; //set the permalink argument

//append the Disqus embed script to HTML
var dsq = document.createElement(‘script’); dsq.type = ‘text/javascript’; dsq.async = true;
dsq.src = ‘https://’ + disqus_shortname + ‘.disqus.com/embed.js’;
jQuery(‘head’).append(dsq);

}

jQuery(‘.show-disqus’).show();
source.hide();
};

function disqusEvent()
{
idleTime = 0;
}


blog comments powered by



Source link

No tags for this post.

LEAVE A REPLY

Please enter your comment!
Please enter your name here