Protection against digital gold diggers—software blocks crypto mining

Protection against digital gold diggers. Software blocks crypto mining
It is a phenomenon known to almost all of us: you browse the web and suddenly your computer slows down and runs loudly. This could be due to so-called crypto mining, meaning the access to computer power to generate cryptocurrencies without the knowledge of the user. In response, the St. Pölten UAS has developed the open source software 'CoinEater' which blocks unwanted access and is available as an add-on to Firefox and Chrome. Credit: St. Pölten UAS

Cryptojacking describes the creation of cryptocurrencies by a website that executes background mining software on a visitor's computer. Since mining is a very computing-intensive process, this can lead to reduced battery life on mobile devices. The cryptojacked computer runs at full speed, the battery drains quickly, and the profit goes to the attackers. The St. Pölten UAS has now developed the free app CoinEater, which recognises online crypto mining and blocks its execution.

"Usually, high-performance hardware is used to generate cryptocurrencies. Cryptojacking distributes between many, less powerful devices and poses a new form of threat on the internet," explains Sebastian Schrittwieser, head of the Institute for IT Security Research at the St. Pölten UAS, who helped develop the software.

Ongoing Search for New Threats

A scanner developed at the Institute for IT Security Research automatically searches the Internet for cryptojacking at regular intervals. The results are then integrated into the CoinEater software. To do this, the researchers went through over 1 million of the most popular websites and uncovered that more than 3,000 sites were digging for cryptocurrencies without their users' knowledge. The researchers' programme also provides a technical analysis of the methods used by these websites.

"The use of such techniques is legitimate if users agree to them, for instance, in order to hide advertisements," says Schrittwieser. Cryptojacking, on the other hand, is a misuse of the users' devices.

Protection against digital gold diggers. Software blocks crypto mining
The Malware Lab, St. Pölten University of Applied Sciences. Credit: St. Pölten UAS / Sebastian Schrittwieser

"Even though Coinhive, the largest provider of online mining software today, is going to discontinue its services soon, the problem will not be completely eradicated, and mining could become more worthwhile once again later on," says Schrittwieser. The scanner can also detect other providers of crypto mining.

Protection against Pop Ups

The scanner also recognises another new phenomenon on the Internet: the pop-up scam. When visiting websites, users are confronted with pop-up windows containing ads or short messages that link them to fee-based offers or malware and which have to be tediously clicked away.

The software is updated constantly. It scans about 100,000 pages every day and runs a update for the one million pages once every ten days.

Download of the add-on for protection from crypto mining https://www.coineater.io.


Explore further

Is your computer secretly mining Bitcoin alternatives? A guide to 'cryptojacking'

More information: Julian Rauchberger et al. The Other Side of the Coin, Proceedings of the 13th International Conference on Availability, Reliability and Security - ARES 2018 (2018). DOI: 10.1145/3230833.3230869
Provided by St. Poelten University of Applied Sciences
Citation: Protection against digital gold diggers—software blocks crypto mining (2019, March 15) retrieved 21 August 2019 from https://phys.org/news/2019-03-digital-gold-diggerssoftware-blocks-crypto.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.
8 shares

Feedback to editors

User comments

Mar 17, 2019
A significant part of the situation here is that many if not most don't know what "cryptocurrency" is. No one provides a straightforward explanation. Even this article fails there. It refers, as so many do, to "digging" or "mining" for cryptocurrency, but they don't explain what that means. Is there something inside people's computers that others manage to extract and convert into currency? It appears that "mining" means. basically, outside users taking over someone's computer to produce, essentially, a single large computer. Nowhere is it addressed what the nature of these outside projects is. It can be asked how this can be wrong, but, among other things, it can also be pointed out, if this is legitimate and necessarily ethical, why is this aspect not addressed or admitted?

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more