Malware on Yahoo ads turned user PCs into bitcoin miners

January 10, 2014 by Bob Yirka report
Yahoo logo

(Phys.org) —Yahoo, has acknowledged that its service sites were used by hackers to enslave massive numbers of ordinary PCs who did so to generate bitcoins, and by extension, real earnings. Ads were placed on Yahoo web sites that when clicked by users, resulted in malware being installed on their computer. The malware reportedly caused no harm to user PC's other than to make them appear to run slower.

Bitcoin is a peer-to-peer payment system—created as a means to allow for commerce on the Internet without the assistance of a governmentally backed monetary system. Bitcoins can be used to purchase things from vendors (who accept them) on the Internet in ways nearly identical to using a or PayPal. In order to do so, users must first obtain one or more them—most do so by either purchasing them directly or by earning them via offers made by others that have some to share. In order for the system to grow, more must be generated on a regular basis. But they're not printed by a central agency, bitcoins are instead created by "miners" which are computers running software designed to solve —they get a certain number of bitcoins in exchange for their efforts. As the popularity of bitcoins has increased, the math problems have become harder (limiting supply to keep up demand and thus value) requiring more processor power. In the beginning, a person using their own computer could use the software to create bitcoins, nowadays, it takes powerful dedicated computers or in this new effort, a botnet—which is where PCs were pooled together to solve the math problems.

With the Yahoo incident, a hacker group developed malware that infected user computers when their owner clicked on a certain ad, causing their computer to become part of a botnet (each doing a little bit of number crunching.) That botnet worked as a single entity (miner) to generate massive numbers of bitcoins, which all went to the originator of the malware.

Yahoo says only Yahoo users in Europe were infected by the malware and only for the period December 31, 2013 through January 3, 2014—when Yahoo discovered the ruse it removed the ads. Unfortunately, all of those computers (approximately two million) infected during that timeframe remain infected unless their owner has taken steps to have the removed using commercial anti-virus software.

Explore further: Tor and Bitcoin promise online stealth

Related Stories

Tor and Bitcoin promise online stealth

October 2, 2013

The Silk Road website that was shut down by US authorities, who branded it a black market for drugs and other illicit wares, relied on Tor and Bitcoins to protect the anonymity of users.

Australian claims huge bitcoin robbery

November 8, 2013

An Australian man claimed Friday to be the victim of a massive bitcoin robbery, saying hackers had stolen more than one million dollars of the digital currency from his website.

China Bitcoin exchange bans yuan deposits

December 18, 2013

The biggest Bitcoin exchange in China said Wednesday that it's no longer accepting yuan deposits, dealing another setback to the virtual currency.

Recommended for you

Smart home heating and cooling

August 28, 2015

Smart temperature-control devices—such as thermostats that learn and adjust to pre-programmed temperatures—are poised to increase comfort and save energy in homes.

Smallest 3-D camera offers brain surgery innovation

August 28, 2015

To operate on the brain, doctors need to see fine details on a small scale. A tiny camera that could produce 3-D images from inside the brain would help surgeons see more intricacies of the tissue they are handling and lead ...

Team creates functional ultrathin solar cells

August 27, 2015

(Phys.org)—A team of researchers with Johannes Kepler University Linz in Austria has developed an ultrathin solar cell for use in lightweight and flexible applications. In their paper published in the journal Nature Materials, ...

Interactive tool lifts veil on the cost of nuclear energy

August 24, 2015

Despite the ever-changing landscape of energy economics, subject to the influence of new technologies and geopolitics, a new tool promises to root discussions about the cost of nuclear energy in hard evidence rather than ...

2 comments

Adjust slider to filter visible comments by rank

Display comments: newest first

EnricM
not rated yet Jan 11, 2014
Bad news for Bitcoin.
Yogaman
not rated yet Jan 11, 2014
And how exactly does one use commercial anti-virus software to remove the malware? Wouldn't it be nice to have that information in this article?

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.