Article

Thousands of Websites Infected in Massive Cryptojacking Attack

Topic: Business NetworkingBy Michael PetersPublished Recently added
No ratings yet1,022 viewsSign in to rate
Thousands of websites, including government sites in the United States, the U.K., and Australia, were ensnared in an international cryptojacking scheme, The Register reports:The affected sites all use a fairly popular plugin called Browsealoud, made by Brit biz Texthelp, which reads out webpages for blind or partially sighted people. This technology was compromised in some way—either by hackers or rogue insiders altering Browsealoud’s source code—to silently inject Coinhive’s Monero miner into every webpage offering Browsealoud. For several hours today, anyone who visited a site that embedded Browsealoud inadvertently ran this hidden mining code on their computer, generating money for the miscreants behind the caper. The nearly 4,300 websites impacted included the U.S. Federal Court system, City University of New York, and the U.K.’s National Health Service (NHS). Notably, the sites themselves were not breached; hackers delivered the malware by compromising the popular Browsealoud plugin. As of this writing, the developers of Browsealoud have not determined how their code was hacked. Cryptojacking Attacks Getting More Frequent & Sophisticated Cryptojacking, which employs crypto-mining malware to covertly (and illegally) co-opt CPU resources to “mine” cryptocurrencies like Monero, is on track to becoming a bigger threat to enterprises than ransomware. There are two ways in which cryptojacking attacks can occur: The first attack vector uses a script injected into a website or in content delivered to multiple websites, such as ads or plugins. No code is stored on victims’ computers; the malware runs only while the visitor has the infected website tab or ad pop-up open. This is the type of attack vector used in the Browsealoud hack and the cryptojacking advertisements recently discovered running on YouTube. If your organization’s website is cryptojacked, your site visitors’ computer hardware is put to work making money for cyber criminals. Whenever your employees visit a cryptojacked site, they’re the ones put to work for the cyber criminals; additionally, the cryptojacking malware eats up their machines’ resources, slowing their systems, decreasing their productivity, and potentially tying up your IT department with complaints about system sluggishness. The second method of attack is to install crypto-mining malware on victims’ computers that runs in the background, sucking up resources unbeknownst to the victims. Usually, this happens through a phishing scheme, but a new cryptojacking variant called WannaMine, which specifically targets enterprise systems, also employs the credential harvester Mimikatz to crack weak user passwords. While cryptojacking malware traditionally attacked smartphones and other small IoT devices, “next-generation” malware like WannaMine and Smominru are designed to go after desktop machines and servers. WannaMine has been reported to eat up so many resources that it has caused applications and hardware to crash. Rogue crypto-mining is even threatening critical infrastructure. Last week, cryptojacking malware was discovered on an industrial control system at a water utility in Europe, where it reportedly had a “significant impact” on system operations. Preventing Cryptojacking There are several ways in which your organization can guard against cryptojacking: * Incorporate cryptojacking into the cyber security training given to your IT help desk workers and the rest of your employees. * Use network security software to monitor for and block the activity needed for crypto-miners to work. * Keep your systems and software up-to-date; only older Windows machines are susceptible to the Ete al Blue exploit used by WannaMine and Smominru. * Ensure that all system users are using strong passwords that cannot be cracked by Mimikatz. * Ensure that all of your employees use ad blocking and anti-crypto-mining browser extensions.

Article author

About the Author

Michael Peters is the CEO of Lazarus Alliance, Inc., the Proactive Cyber Security™ firm, and Continuum GRC. He has served as an independent information security consultant, executive, researcher, and author. He is an internationally recognized and awarded security expert with years of IT and business leadership experience and many previous executive leadership positions. He has contributed significantly to curriculum development for graduate degree programs in information security, advanced technology, cyberspace law, and privacy, and to industry standard professional certifications. He has been featured in many publications and broadcast media outlets as the “Go-to Guy” for executive leadership, information security, cyberspace law, and governance.

Further reading

Further Reading

4 total

Article

Introduction There was a time when the call center was seen as a place where phones rang endlessly and agents simply answered questions. That picture has changed dramatically. Today the modern call center sits at the center of customer experience, quietly coordinating returns, managing fulfillment concerns, and shaping how customers feel about every interaction with a brand. Instead of reacting to problems, teams now guide customers through complex journeys. Their role has gr

February 6, 2026

Article

In today’s financial landscape, credit scores play a major role in determining access to loans, housing, and even employment opportunities. For individuals facing late payments, collections, or inaccurate credit reports, rebuilding credit can feel overwhelming. This is why many people turn to professional services for guidance. Among the growing number of Credit Repair Companies in Houston and providers offering Credit Repair San Antonio solutions, White Jacobs continues to

February 6, 2026

Article

Choosing the right POS terminal is more important now than ever. With customer expectations rising and payment methods changing quickly, businesses need a device that works fast, stays secure, and handles different payment types. The PAX A30 is a popular Android POS terminal that has gained attention for its modern design and strong features. In this review, we look at how well it performs in real life, what makes it stand out, and whether it can truly be called the best Andr

January 17, 2026

Article

Installing a rack mount server cabinet is an important task for anyone setting up a server room or a data center. These cabinets are designed to hold servers, networking devices, and other hardware safely and in an organized way. A well-planned installation helps improve airflow, manage cables neatly, and secure equipment, which makes the server room safer and more efficient. Whether you’re setting up a small office server or a larger business data center, knowing how to in

January 16, 2026