Browse Definitions :
Definition

cryptojacking

Cryptojacking is the surreptitious and unauthorized use of a computer for the resource and power-demanding requirements of cryptocurrency mining. The attack essentially creates a cryptomining bot, and the attacker may coopt many systems to create a botnet.

Hackers can use a variety of techniques for cryptojacking. Originally, cryptojacking involved infecting a target system with malware. More recently, however, in a common JavaScript-based method, the attacker creates content that automatically runs cryptomining software in users' browsers when they visit the page hosting it. The attacker may create the content for the purpose of cryptojacking or may compromise an existing site.

In another twist on the practice, researchers for Chinese cybersecurity vendor Qihoo 360's Netlab team recently reported that an ad network was running cryptomining software in the browsers of unsuspecting users who visit the advertisers' websites. Because programmatic advertising places ads automatically, site owners have little control over the issue. The malware used domain generation algorithms (DGAs) to bypass ad blockers and serve ads to all site visitors.

Cryptojacking techniques have been proposed for beneficial uses as well, such as providing a revenue stream for sites and services or crowdfunding for disaster relief efforts. Nevertheless, from the perspective of end users and network administrators, cryptojacking is primarily a drain on processing and power resources.

This was last updated in March 2018

Continue Reading About cryptojacking

SearchCompliance
  • OPSEC (operations security)

    OPSEC (operations security) is a security and risk management process and strategy that classifies information, then determines ...

  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

SearchSecurity
  • hardware security module (HSM)

    A hardware security module (HSM) is a physical device that provides extra security for sensitive data.

  • buffer overflow

    A buffer overflow occurs when a program or process attempts to write more data to a fixed-length block of memory, or buffer, than...

  • biometric verification

    Biometric verification is any means by which a person can be uniquely identified by evaluating one or more distinguishing ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

SearchStorage
  • What is RAID 6?

    RAID 6, also known as double-parity RAID, uses two parity stripes on each disk. It allows for two disk failures within the RAID ...

  • PCIe SSD (PCIe solid-state drive)

    A PCIe SSD (PCIe solid-state drive) is a high-speed expansion card that attaches a computer to its peripherals.

  • VRAM (video RAM)

    VRAM (video RAM) refers to any type of random access memory (RAM) specifically used to store image data for a computer display.

Close