Tech 26 November 2018Dennis Wafula
Cryptojacking malware hits Make-A-Wish Foundation site
Cybercriminals are at it again, this time setting their sights on a charity foundation.
Last week, researchers at security firm Trustwave reported that they have found a CoinImp crypto mining script has been injected into the official website of Make-A-Wish Foundation. In a blog post, the Trustwave researchers said the malware has been mining cryptocurrencies since May 2018. CoinImp has been using the website visitors’ computing power to mine cryptocurrencies.
Upon further investigation, researchers discovered that the foundation’s website became vulnerable earlier this year when its domain host, Drupal, became vulnerable to CVE-2018-7600, a remote code execution bug popularly known as “Drupalgeddon 2.” Drupal, an open source content management system, claimed that the vulnerability allowed hackers to inject malicious malware into specific websites that had failed to add in their security patch.
Researchers have warned that Drupal-based websites need to be updated to avoid attacks from these and other malicious malware. Just this spring, the Drupalgeddon 2 bug, Remote Code Execution (RCE) vulnerability in the older versions of Drupal, affected more than 100,000 sites.
Meanwhile, McAfee Labs, an Internet security provider warned the public to watch out for a new cryptojacking malware called WebCobra. The company stated that unlike previous malware, the new cryptojacking malware could not be traced in the victim’s computer. The malware will slow down the user computer and consume a lot of power during its operations.
Note: Tokens on the Bitcoin Core (SegWit) chain are referenced as BTC coins; tokens on the Bitcoin Cash ABC chain are referenced as BCH, BCH-ABC or BAB coins.
Bitcoin Satoshi Vision (BSV) is today the only Bitcoin project that follows the original Satoshi Nakamoto whitepaper, and that follows the original Satoshi protocol and design. BSV is the only public blockchain that maintains the original vision for Bitcoin and will massively scale to become the world’s new money and enterprise blockchain.
Tech 7 hours ago
Twitter CEO wants engineers to make crypto ecosystem ‘better’
Jack Dorsey is forming a team of four engineers and one designer who will work full time on open source contributions to the crypto ecosystem.
Tech 20 March 2019
Crypto mining startup wanting to challenge the big guns appears to be a scam
OnMiners touts a new generation of mining rigs that use endothermic chips. but it now appears it may be nothing more than a scam.
Tech 18 March 2019
BME, Renta 4 Banco prove blockchain technology successful
The combined efforts of BME and Renta 4 Banco bore significant fruit when their new blockchain platform was able to successfully exchange digitized certificates without the need for an actual physical certificate to be exchanged.