The global outbreak in malicious cryptocurrency mining that unfolded in 2018 saw the number of attacks increase by more than 83%, with over five million users attacked online in the first three quarters of the year, compared to 2.7 million over the same period in 2017. The major driver behind the crypto gold rush was the installation and use of unlicensed software and content, according to Kaspersky Lab.
In 2018, malicious cryptocurrency mining prevailed over the main threat of the last few years: ransomware. The number of internet users attacked by malicious cryptocurrency mining software increased steadily during the first half of the year, peaking in March, with around 1.2 million users a month coming under attack.
Kaspersky Lab experts have investigated the economic background of the sudden onset of crypto-mining fever to discover what drove the global distribution of this threat. They analysed the regulatory landscape, electricity prices in the top 10 countries targeted by crypto miners and main infection vectors for the popular malware families.
The analysis shows that neither cryptocurrency legislation nor the cost of power has a significant impact on the spread of malicious mining malware. However, the investigation of malware families reveals that they mainly infected devices by duping users into installing pirated software and unlicensed content.
“There is a clear correlation between how easy it is todistribute unlicensed software and how manyincidents of malicious cryptominer activity are actually detected. The downloading and installation of dubious software – an activity not generally perceived as dangerous – underpins what is arguably the biggest cyberthreat story of the year – malicious crypto mining,” said David Emm, Principal Security Researcher at Kaspersky Lab.
Other key findings from the report include:
To reduce the risk of infection with miners, consumers and businesses are advised to:
The full text of the Story of the Year 2018: Cryptocurrency miners is available here.
Read more about ransomware as Story of the Year 2017here.
Read more about how malicious cryptocurrency mining displaced it here.
Read more about upcoming cryptocurrencies developments in 2019 here.
The report forms part of the annual KasperskySecurity Bulletin. Other sections of the bulletin include the Threat Predictionsfor2019 available here, and the annual Review and Statistics, available in December.