Skip to main content
Blog
09 Nov 2017

Cryptojacking - The next big cybersecurity threat

Malware, phishing, adverts, pornography, terrorism. When we think about the threats that exist on the web they’re probably the first things that pop into our head, but there’s a brand new internet menace that is quickly gaining popularity and causing many headaches in the process - Cryptojacking.

If the term Cryptojacking is new to you, we’re not surprised. It’s a relatively new threat which is the latest evolution of cryptocurrency and blockchain technology - and is the act of using your device to “mine” for cryptocurrency; often without your knowledge.

Services such as coin-hive allow developers to embed code into their web pages which executes JavaScript in the background, constantly solving complex mathematical puzzles in order to make money. So is this a bad thing?

If website developers decide to use this method of monetization instead of advertising, wouldn’t the web be a better place? Almost certainly not. These crypto mining services often work without your knowledge, utilizing huge amounts of CPU and draining your device's battery in the process.

On one website, on one device - perhaps it’s not a problem; but every website? Across every device? That’s a sysadmin nightmare. To make matters worse we’ve only discussed web developers that actively choose to implement crypto mining software on their websites. T

here has been a whole spate of high profile Cryptojacking incidents recently where code has been maliciously injected unknowingly - even Cristiano Ronaldo hasn’t escaped!

How to keep you and your users safe

This current trend hasn’t gone unnoticed here at Smoothwall HQ, and our in-house team have been working hard to ensure that these crypto mining services are appropriately categorised as Malware.

However, whilst simple domain and URL filtering will always remain an important tool, it doesn’t help to protect users from new unidentified threats - and that’s where our dynamic content filtering really shines.

The Smoothwall blog is awash with articles that tell you how important HTTPS interception and content filtering is, and this one will be no different.

This new threat doesn’t look like it will be going away anytime soon, but if you employ a HTTPS decrypt and inspect policy and ensure that the Smoothwall provided ‘Malware and Phishing’ and ‘Adverts’ category are blocked,  you can rest assured that your network and your users are safe.

Have you been affected by Cryptojacking? Let us know by leaving your comments below.  

Further Reading
Farewell to the 2018 SAFE Masterclass Roadshow
19 Oct 2018

Farewell to the 2018 SAFE Masterclass Roadshow

By Lauren Atkinson Read More
Introducing Smoothwall’s New Whitepaper - Digital Safeguarding: A School’s Complete Guide to Active Monitoring
09 Oct 2018

Introducing Smoothwall’s New Whitepaper - Digital Safeguarding: A School’s Complete Guide to Active Monitoring

By Lauren Atkinson Read More
Smoothwall's Women in Tech Series: Daniela Villarreal
08 Oct 2018

Smoothwall's Women in Tech Series: Daniela Villarreal

By Daniela Lackhoff Read More