Browse Definitions :
Definition

cryptomining malware

Contributor(s): Laura Fitzgibbons

Cryptomining malware is malicious code that takes over a computing device's resources so an attacker can use the device's processing power to track and verify cryptocurrency transactions in a distributed ledger. In digital currencies like Bitcoin, the verification process is known as mining and it can be financially profitable for the agents who engage in it.  

Cryptomining malware most often infects a computer when a user unknowingly downloads malware. Attackers typically embed infected code in other programs or files in order to bypass a system's security. Because cryptomining software runs in the background, a user might not realize they have been the victim of an attack until they experience a graceful degradation of service. To defend against this type of attack, security experts recommend individuals keep software up-to-date and network administrators perform regular penetration tests.

The act of infecting a computing device with malicious code is known as cryptojacking. A large-scale cryptojacking attack took place in February 2019, when a virus called CookieMiner was launched against Apple products. Large-scale attacks have also be aimed at networks and servers, targeting multiple machines at once.

This was last updated in February 2019

Continue Reading About cryptomining malware

Join the conversation

1 comment

Send me notifications when other members comment.

Please create a username to comment.

If you have experience with buying and trading cryptocurrency, how do you protect your investments?
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance as a service (CaaS)

    Compliance as a Service (CaaS) is a cloud service service level agreement (SLA) that specified how a managed service provider (...

  • data protection impact assessment (DPIA)

    A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, ...

SearchSecurity

  • spyware

    Spyware is a type of malicious software -- or malware -- that is installed on a computing device without the end user's knowledge.

  • application whitelisting

    Application whitelisting is the practice of specifying an index of approved software applications or executable files that are ...

  • botnet

    A botnet is a collection of internet-connected devices, which may include PCs, servers, mobile devices and internet of things ...

SearchHealthIT

SearchDisasterRecovery

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

SearchStorage

  • DRAM (dynamic random access memory)

    Dynamic random access memory (DRAM) is a type of semiconductor memory that is typically used for the data or program code needed ...

  • RAID 10 (RAID 1+0)

    RAID 10, also known as RAID 1+0, is a RAID configuration that combines disk mirroring and disk striping to protect data.

  • PCIe SSD (PCIe solid-state drive)

    A PCIe SSD (PCIe solid-state drive) is a high-speed expansion card that attaches a computer to its peripherals.

Close