Malvertising Campaign Mines Cryptocurrency Right in Your Browser
Malvertising Campaign Mines Cryptocurrency Right in Your Browser
Thought this was interesting.
Malvertising Campaign Mines Cryptocurrency Right in Your Browser
https://www.bleepingcomputer.com/news/s ... r-browser/
Malvertising Campaign Mines Cryptocurrency Right in Your Browser
https://www.bleepingcomputer.com/news/s ... r-browser/
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
It runs via scripts. Another good reason to use NoScript.
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
Off-topic:
Although I understand some of you love NoScript for what it does, I'm getting really tired of hearing the same'ol every... single... time... there is a mention of potential abuse (and sometimes legitimate use) of scripting for tasks. It's not a magic wand, and you may or may not like it but the reality is that JavaScript is an essential and integral part of the modern web. It's not optional, and NoScript can and will break many sites.
So stop scratching that itch, please. It's exhausting to see it over and over.
Now to get back on-topic for this thread, I'm pretty sure that anyone would notice their CPU going full-bore because of JS-based cryptocurrency mining. On top of that, there is the issue that CPU mining of cryptocurrency is not going to be in any way bringing in more than very small amounts; I doubt that it would even pay for the advertising costs. Not in a world where we have GPU mining and ASICs.Although I understand some of you love NoScript for what it does, I'm getting really tired of hearing the same'ol every... single... time... there is a mention of potential abuse (and sometimes legitimate use) of scripting for tasks. It's not a magic wand, and you may or may not like it but the reality is that JavaScript is an essential and integral part of the modern web. It's not optional, and NoScript can and will break many sites.
So stop scratching that itch, please. It's exhausting to see it over and over.
Then there's the issue that malvertising can and will be stopped by ad networks when brought to light, because they have to -- such intrusive actions are equal to computer hacking (the bad kind), especially if no permission was granted and no action was taken by the user.
"Sometimes, the best way to get what you want is to be a good person." -- Louis Rossmann
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
Moonchild wrote:It's not optional, and NoScript can and will break many sites.
Off-topic:
Yup, I finally got so sick and tired of trying to figure out what script was being blocked, causing web page
dysfunction that I just un-installed it. I don't miss it at all.
Yup, I finally got so sick and tired of trying to figure out what script was being blocked, causing web page
dysfunction that I just un-installed it. I don't miss it at all.
I was thinking the same thing, I mean, how would you be able to play the game on the site if it was hogging all you CPU?I'm pretty sure that anyone would notice their CPU going full-bore because of JS-based cryptocurrency mining.
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
I remember reading some time ago that uTorrent had a miner in their client.
-
- Moon Magic practitioner
- Posts: 2986
- Joined: 2015-09-26, 04:51
- Location: U.S.
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
John connor wrote:I remember reading some time ago that uTorrent had a miner in their client.
Yes, I read about it here - uTorrent bundles Bitcoin Miner, time for some alternatives
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
I like how uTorrent's response is a flat out lie.
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
Sounds like it might be a good time to try and get PM's old XSS filter up and working again.
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
That won't help with this. the malvertising campaign isn't XSS.Tomaso wrote:Sounds like it might be a good time to try and get PM's old XSS filter up and working again.
"Sometimes, the best way to get what you want is to be a good person." -- Louis Rossmann
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
If you got it working, that would be awesome!Tomaso wrote:Sounds like it might be a good time to try and get PM's old XSS filter up and working again.
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
UBlock Origin is able to block the script, but you have to subscribe to Steven Black's list.
Avatar's Source: yereverluvinuncleber
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
Or EasyPrivacy, which is now blocking the mining scripts on coin-hive.com and jsecoin.com.hujan86 wrote:UBlock Origin is able to block the script, but you have to subscribe to Steven Black's list.
Nichi nichi kore ko jitsu = Every day is a good day.
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
A few torrent sites are looking to or already have introduced this crypto-mining malarky (TPB & Noid already experimenting) in order to do away with ads. The community is not happy but I suspect many more ad dependant (torrent) sites may follow...
https://torrentfreak.com/the-pirate-bay-website-runs-a-cryptocurrency-miner-170916/
https://torrentfreak.com/cryptocurrency-miner-targeted-by-anti-virus-and-adblock-tools-170926/
https://torrentfreak.com/the-pirate-bay-website-runs-a-cryptocurrency-miner-170916/
https://torrentfreak.com/cryptocurrency-miner-targeted-by-anti-virus-and-adblock-tools-170926/
Re: Malvertising Campaign Mines Cryptocurrency Right in Your Browser
I hate to say this, but looking at the coin-hive site, it seems like a really great way to generate revenue all the while getting rid of those pesky and annoying ADs. You can adjust how much of a person's CPU is used so that you don't tax their complete system. 20%-30% sounds reasonable. Besides, many people have a pretty good CPU and at the rate of 20%-30% that's like just running a Flash-based script. I do wonder about the smart device users though. There are many. I can seeing this being a new way in the future for websites wanting to get rid of ADs. Especially if you have a rather large user base like TPB.
So do I support it? On websites that will only utilize 20%-30% of my CPU, sure. I want to support the site, but I can't stand ADs. Although, I imagine with my use of uBlock, eventually the script will get blacklisted. So I would have to allow it.
So do I support it? On websites that will only utilize 20%-30% of my CPU, sure. I want to support the site, but I can't stand ADs. Although, I imagine with my use of uBlock, eventually the script will get blacklisted. So I would have to allow it.