A recent report has shown that crypto jackers are actively making use of fake flash updates as a means of installing malware into a system. This malware once installed are used to mine Monero (XMR), without the system owner suspecting a thing.
Fake Flash Update Hacking is not New
This style of hacking has been around for quite a while and it has been used for installing various types of malware into unsuspecting victims systems.
The first step of the process is to signal to the system users, that the flash software installed is outdated and a quick update is required. This is done through an official-looking Adobe Installer popup. Once the user agrees to this quick fake flash update, the system becomes infected with a malware target for the purpose of mining XMR. The report also notes that the Adobe fake flash player installed is however still capable of installing the latest version of flash, therefore no alarm gets raised.
As a result of this, the number of infected systems is quite enormous.
The report also made it know that hundreds of fake Flash updates were found since March, but the cryptojacking strain reported in this case has only been around since August.
How Cryptojacking Works
Cryptojacking works on the basic principle of stealthy usage. This means instead of having to set up their own mining farms, hackers find illegal means of installing mining software such as: XMRig Crypto miners, into a users computer system. The mining malware then uses the victim’s system CPU as a mining tool.
The effect of Cryptojacking has been felt greatly all over the world. Recently, a report was released that about 119 Indian Government websites are been hacked by Cryptojackers. Report coming from the Uk has also stated that about 59% of businesses located in the country has suffered cryptojacking attacks.