{"id":1641,"date":"2020-10-23T18:45:34","date_gmt":"2020-10-23T18:45:34","guid":{"rendered":"https:\/\/sectigostore.com\/blog\/?p=1641"},"modified":"2020-12-03T15:29:55","modified_gmt":"2020-12-03T15:29:55","slug":"what-is-cryptojacking-how-to-define-explain-prevent-it","status":"publish","type":"post","link":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/","title":{"rendered":"What Is Cryptojacking? How to Define, Explain &#038; Prevent It"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\"><a href=\"https:\/\/coinmarketcap.com\/all\/views\/all\/\">Coinmarketcap.com reports<\/a> that the cryptocurrency market\u2019s worth has surpassed $393 billion. Cryptojacking is one of the ways that cybercriminals try to get a piece of the action\u2026<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">What is cryptojacking and how do you prevent it? Cryptojacking, also called malicious crypto mining, is a type of cybercrime that involves the illegal mining or theft of digital currencies such as Bitcoin, Monero, Dash and Ethereum. This process generally involves compromising other devices to steal their processing power and other related resources.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In a cryptojacking attack, hackers \u201chijack\u201d the processing capabilities of users\u2019 devices to illegally \u201cmine\u201d for cryptocurrencies. (Hence the clever name.) In some cases, they steal previously mined cryptocurrencies from the targets\u2019 crypto wallets.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Basically, there are four main ways to get your hands on cryptocurrencies (virtually speaking, of course) in general:<\/p>\n\n\n\n<ol class=\"wp-block-list\" type=\"1\"><li>Buy or invest in cryptocurrencies such as Bitcoin.<\/li><li>Create a high-powered setup (or rent processing capabilities from others\u2019 machines) to legally mine cryptocurrencies. Warning: it\u2019s expensive and is super resource intensive.<\/li><li>Hijack the computational resources of others\u2019 computers to use them to mine crypto illegally without their consent.<\/li><li>Steal mined crypto currencies from the cryptographic wallets of other crypto miners or investors.<\/li><\/ol>\n\n\n\n<p class=\"wp-block-paragraph\">As you can probably guess, the first two are legal but the last two are diving head-first into illegal waters. And the latter area is right where cryptojacking cybercriminals love to swim.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">So, if you\u2019re wondering what cryptojacking is and how it works more in depth, then you\u2019ve come to the right place. Not only are we here to answer your question \u201cwhat is cryptojacking?\u201d we\u2019ll also talk about how to prevent cryptojacking from affecting you and your business.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What Is Cryptojacking? A Definition<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Cryptojacking is a term that traditionally describes the hijacking of computer resources and power to mine for cryptocurrencies. Basically, it&#8217;s the ugly version of cryptocurrency mining.  This is the most common cryptojacking definition. For example, the <a href=\"https:\/\/us-cert.cisa.gov\/ncas\/tips\/ST18-002\">U.S. Cybersecurity &amp; Infrastructure Security Agency<\/a> (CISA) describes it as such:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p><em>&#8220;Cryptojacking occurs when malicious cyber actors effectively hijack the processing power of the victim devices and systems by exploiting vulnerabilities\u2014in webpages, software, and operating systems\u2014to illicitly install cryptomining software on victim devices and systems.&#8221;<\/em><\/p><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">However, some cryptojacking definitions also <a href=\"https:\/\/www.varonis.com\/blog\/cryptojacking\/\">use the term to describe cryptocurrency theft,<\/a> saying it&#8217;s a way for cybercriminals to use scripts and codes to illegally get their hands on the contents of your cryptographic wallet. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">With this difference in definitions in mind, there are two main ways to think about how cybercriminals engage in cryptojacking:<\/p>\n\n\n\n<ol class=\"wp-block-list\" type=\"1\"><li>Cybercriminals can steal the processing capabilities of unsuspecting individuals\u2019 devices to mine for cryptocurrencies. (This is the most common way people describe cryptojacking.)<\/li><li>Cybercriminals can steal cryptocurrencies from others&#8217; cryptographic wallets. This can be done either through the use of cryptojacking code or through the malicious use of legitimate crypto mining software.<\/li><\/ol>\n\n\n\n<p class=\"wp-block-paragraph\">The first example of cryptojacking is a process that\u2019s related to cryptocurrency mining (which we\u2019ll talk more about shortly). However, it\u2019s the covert and often illegal version of it because it&#8217;s done without the device owner&#8217;s consent or knowledge. While crypto mining is a way that legitimate computer users can profit, cryptojacking is all about stepping on others and stealing their resources to come out ahead financially. All the while, the people who are being stepped on are blissfully ignorant of what\u2019s happening and how their devices are being used.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">As a malicious and illegal form of cryptocurrency mining, cryptojacking cybercriminals rely on the use of malicious code or cryptojacking script to do their bidding. These scripts can be delivered via <a href=\"https:\/\/sectigostore.com\/blog\/what-is-a-phishing-email-5-examples-of-phishing-emails-and-how-to-avoid-them\/\">phishing emails<\/a> or through the use of malicious ads. Either way, malicious code loads onto your device or browser, and it enables cybercriminals to use your computing and graphics power to mine for cryptocurrencies.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Thankfully, law enforcement are trying to crack down on cryptojacking criminals. In fact, the <a href=\"https:\/\/www.justice.gov\/usao-ndoh\/pr\/two-members-romanian-cybercriminal-enterprise-bayrob-group-sentenced-21-counts-relating\">U.S. Department of Justice (DOJ) reported<\/a> at the end of 2019 that two Romanian cybercriminals were sentenced to 20 years and 18 years, respectively, for their roles in developing and distributing crypto mining malware. <\/p>\n\n\n\n<h3 class=\"wp-block-heading\">What Types of Devices Are Affected by Cryptojacking<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Cryptojacking attacks don\u2019t discriminate \u2014 cryptojacking code payloads can deploy on desktop computers, laptops, tablets, <a href=\"https:\/\/sectigostore.com\/blog\/what-is-jailbreaking-an-iphone-is-jailbreaking-safe\/\">smart phones<\/a>, gaming systems and other devices. Basically, if it can connect to the internet, it can be a target for cryptojacking attacks.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But why would cybercriminals target smartphones? They only have limited processing power, right? True. But when you add together hundreds or even thousands of such devices, those \u201cminimal\u201d resources quickly add up. Cybercriminals create entire <a href=\"https:\/\/sectigostore.com\/blog\/botnet-attacks-what-is-a-botnet-how-does-it-work\/\">botnets<\/a> that consist of thousands or hundreds of thousands of devices with the goal of cryptojacking (think <a href=\"https:\/\/www.coresecurity.com\/core-labs\/articles\/what-is-the-smominru-botnet\">Smominru<\/a> or the newly discovered <a href=\"https:\/\/blog.talosintelligence.com\/2020\/07\/prometei-botnet-and-its-quest-for-monero.html\">Prometei<\/a> cryptojacking botnet). So, 1+1+1+1+1\u2026 You get the picture.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">And while all of these illicit activities are occurring, you\u2019re none-the-wiser about it and may simply be wondering why your device suddenly seems sluggish.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Cryptojacking Scripts and Code: 4 Signs Your Device or Website May Be Compromised<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">So, how do you know if your device or site is being used as a pawn in a cryptojacking scheme? There are a few things that indicate that your device or website may be compromised by a cryptojacking script or code:<\/p>\n\n\n\n<ol class=\"wp-block-list\" type=\"1\"><li><strong>Your device is slow or having other performance issues (such as crashing). <\/strong>We already touched on this one. If your device seems abnormally slow or exhibits performance issues, you may have cryptojacking code running on your machine.<\/li><li><strong>Your battery is draining more quickly or your device is overheating.<\/strong> All crypto mining activities, including malicious crypto mining, are resource-intensive processes. As such, it\u2019ll drain your device\u2019s battery noticeably faster than normal usage.<\/li><li><strong>You notice abnormally high CPU usage and latency.<\/strong> If your device seems to be steaming ahead at warp speed, it\u2019s a good indication that something\u2019s amiss. &nbsp;<\/li><li><strong>You notice changes to your website\u2019s files or code.<\/strong> Whenever there are changes like this that you don\u2019t remember making, it\u2019s always a red flag.<\/li><\/ol>\n\n\n\n<p class=\"wp-block-paragraph\">Cryptojacking code can be hard to detect because 1) it often doesn\u2019t involve the use of a traditional downloader, and 2) it may piggyback on legitimate crypto mining scripts and software. However, if you discover crypto mining malware during a scan, that\u2019s a clear indication that your system is compromised.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Now that you know what to look out for, let\u2019s take some time to better understand how cryptojacking works. But to do that, you first need to know how legitimate crypto mining works. (Don\u2019t worry, we\u2019ll make this part relatively quick.)<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Crypto Mining: How You Mine Cryptocurrencies Legally<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Cryptocurrency mining is the law-abiding cousin of cryptojacking. Unlike its outlaw cousin, crypto mining is a way to legally generate digital money through the use of computers, encryption, and a shared list of data blocks known as a ledger. (This is also known as a blockchain.)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Of course, we\u2019re not going to get into all of the technical specifics here \u2014 we\u2019ve already recently done that in an article that breaks down what <a href=\"https:\/\/sectigostore.com\/blog\/what-is-crypto-mining-how-cryptocurrency-mining-works\/\">crypto mining<\/a> is and how it works. &nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But to sum it up quickly, crypto mining is the process of use of massive amount of computing power to try to solve equations and verify cryptographic functions. You do this in competition with other crypto miners for a chance of being rewarded for your effort with cryptocurrency.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s consider this in terms of the most well-known cryptocurrency. In Bitcoin, the crypto mining process involves the use of computers to solve equations. (Basically, you automate the guessing process to continually try to solve the equation). If successful, then they have to update a shared ledger to reflect any changes. When this happens, you\u2019re rewarded with a new Bitcoin in your crypto wallet.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Pretty sweet, huh? Well, don\u2019t quit your day job just yet. Crypto mining isn\u2019t an easy process and, frankly, it involves a massive amount of computational power. This makes it incredibly expensive to do at scale, and crypto mining is all about speed. (We\u2019ll talk more about those energy consumption costs a little later.)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If your computer can\u2019t guess numbers quickly enough to try to solve the equations, then someone else who has a system who can is going to beat you to the punch. And if they announce their answer to the equation before you do, the jig\u2019s up and they\u2019re the ones who get the rewards. And all you get is a lousy t-shirt saying that you competed (and that\u2019s only if you make such a shirt for yourself.)<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Cryptomining Abuse: The Two Primary Cryptojacking Methods<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">As we mentioned a little bit ago, there are two main ways that cybercriminals illegally mine for cryptocurrencies. Typically, this involves the use of device- and browser-based malware or scripts. Some scripts have worm capabilities, which makes it so that they can spread across your network in order to compromise other devices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But do cybercriminals choose one method over the other? Sure. But many opt to use both methods and achieve better results and \u201cget a better bang for their buck,\u201d as the saying goes. &nbsp;&nbsp;<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Browser-Based Cryptojacking<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">This type of cryptojacking method involves creating malicious crypto mining scripts that hackers can inject into websites. There are a few ways they can choose to do this, such as by hiding the code on websites via malicious ads (malvertising campaigns), outdated plugins, or other vulnerabilities. <\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"663\" height=\"542\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/browser-how-cryptojacking-works.png\" alt=\"A diagram that breaks down how cryptojacking works in the browser\" class=\"wp-image-1652\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/browser-how-cryptojacking-works.png 663w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/browser-how-cryptojacking-works-300x245.png 300w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/browser-how-cryptojacking-works-560x458.png 560w\" sizes=\"auto, (max-width: 663px) 100vw, 663px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">But regardless of the method they choose, when legitimate users visit those sites, the malicious code executes. And, of course, there are also concerns that <a href=\"https:\/\/www.helpnetsecurity.com\/2017\/11\/30\/browser-cryptomining-close-window\/\">illicit cryptomining activities continue even after you close out of a compromised site<\/a>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The <a href=\"https:\/\/symantec-enterprise-blogs.security.com\/blogs\/threat-intelligence\/threat-landscape-trends-q2-2020\">Broadcom Threat Landscape Trends<\/a> report from the Symantec Threat Hunter Team shows that there was a sharp increase in reports of blocked browser-based cryptojacking attempts in Q2 2020. These types of attacks spiked 163%. And if you guessed that the two most commonly stolen types of cryptocurrencies in browser-based cryptojacking attacks are Bitcoin (BTC) and Monero (XMR), then you\u2019d be right. &nbsp;&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">One Google Chrome extension that captured the attention of cybersecurity researchers at the beginning of 2020 was, pardon the language, Shitcoin Wallet. While this particular browser extension was marketed as a way for users to conveniently manage their Ether coins and some Etherium tokens in browser, appearances can be deceiving. <a href=\"https:\/\/www.zdnet.com\/article\/chrome-extension-caught-stealing-crypto-wallet-private-keys\/\">ZDNet reports<\/a> that the extension actually injected JavaScript code on web pages. This code would allow hackers to steal private keys and passwords from the users\u2019 crypto wallets and portals and send them to a third-party site.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In our <a href=\"https:\/\/sectigostore.com\/blog\/social-media-scams-29-disturbing-statistics\/\">social media scams statistics article<\/a>, we also shared with you about how social media sites are a way that cybercriminals deploy crypto mining malware. <a href=\"https:\/\/www.bromium.com\/wp-content\/uploads\/2019\/02\/Bromium-Web-of-Profit-Social-Platforms-Report.pdf\">Research by Bromium and Dr. Mike McGuire<\/a> at the University of Surrey shows that ads, apps and various links that are posted via social media platforms also serve as payload delivery methods for various strains of crypto mining malware. Their report indicates that these cryptojacking attacks give cybercriminals $250 million annually. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Not a bad payout considering that cryptojacking jerks aren&#8217;t contributing a cent toward the costs required to run all of the devices they\u2019re using\u2026 wouldn&#8217;t you agree?<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Device-Based Cryptojacking<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">This type of cryptojacking involves covertly loading malware or malicious code on companies\u2019 and users\u2019 devices and networks to steal their resources. They can do this by using malvertising to install drive-by malware onto users\u2019 devices, or by getting users to download malware themselves through other means such as via phishing emails or watering hole websites.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Trojans also are a way to deploy cryptojacking code and scripts. These covert <a class=\"wpil_keyword_link\" href=\"https:\/\/sectigostore.com\/blog\/different-types-of-malware\/\" title=\"types of malware\">types of malware<\/a> are often hidden within decoy downloader apps so you don\u2019t know they\u2019re there.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Regardless of how the crypto mining payload deploys, once it\u2019s done so on your device or network, it\u2019s bad news for you. Unbeknownst to you, the malware takes over your device\u2019s vital resources, making it seem laggy and sluggish. But doesn\u2019t it require hackers to deploy different types of code to work with different systems? Yes, but cybercriminals are resourceful enough to even make this problem a non-issue.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">An <a href=\"https:\/\/cybersecurity.att.com\/blogs\/labs-research\/att-alien-labs-analysis-of-an-active-cryptomining-worm\">AT&amp;T AlienLabs technical analysis<\/a> of select crypto mining worms shows that once a machine becomes compromised, different variations of malicious code continuously deploy until one\u2019s found that\u2019s compatible with the target\u2019s system:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p><em>\u201cRather than trying to select the system architecture and then download the corresponding implant, the malware authors have opted to download implants in a loop and then break the loop when the first implant sticks.\u201d<\/em><\/p><\/blockquote>\n\n\n\n<h4 class=\"wp-block-heading\">Volgar Malware Targets Microsoft SQL Servers Across Various Industries<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/www.guardicore.com\/2020\/04\/vollgar-ms-sql-servers-under-attack\/\">GuardiCore reports<\/a> that cybercriminals were targeting servers running Microsoft SQL in a two-year long global campaign called Vollgar. The apparent goal of the campaign was to deploy remote access tools (RATs) and cryptominers, which they believe infected upwards of 3,000 devices per day.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">A Brief History of Crypto Mining &amp; Cryptojacking<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Crypto mining really seemed to gain traction in late 2017 with the creation of CoinHive. This crypto mining service marketed itself as a way for legitimate <a href=\"https:\/\/www.enisa.europa.eu\/publications\/info-notes\/cryptojacking-cryptomining-in-the-browser\">domain owners to mine for cryptocurrency<\/a> as an alternative way to generate revenue without the need to have ads marring their websites. What this service did was make it so that CoinHive-embedded sites would capitalize on the computer and processing resources of their users\u2019 devices (while they\u2019re on the site) to mine for cryptocurrencies.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">However, this service caught the attention of cybercriminals. And as cybercriminals often do, they took a potentially positive service and turned it into something ugly.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Hackers began deploying CoinHive-based cryptojacking malware to attack and steal from unsuspecting users\u2019 crypto wallets. But crypto mining at scale takes a lot of computational power \u2014 and that\u2019s in part because cryptocurrencies themselves consume a lot of electricity.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The <a href=\"https:\/\/www.cbeci.org\/cbeci\/comparisons\">Cambridge Centre for Alternative Finance at the University of Cambridge<\/a> created a tool that estimates Bitcoin network power consumption. It\u2019s estimated that the annualized energy consumption is 67.38 TWh (terawatt hours). That\u2019s more energy being consumed to power Bitcoin for a year than the entire country of Austria uses for the same period. &nbsp;<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"668\" height=\"312\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/bitcoin-crypto-mining-costs-by-country.png\" alt=\"\" class=\"wp-image-1644\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/bitcoin-crypto-mining-costs-by-country.png 668w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/bitcoin-crypto-mining-costs-by-country-300x140.png 300w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/bitcoin-crypto-mining-costs-by-country-560x262.png 560w\" sizes=\"auto, (max-width: 668px) 100vw, 668px\" \/><figcaption>Image and data source: The Cambridge Bitcoin Electricity Consumption Index (cbeci.org)<\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">These digital devils realized that to make this happen, they needed more juice. &nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Although hackers frequently used CoinHive malware as their go-to tools, that went by the wayside once the legitimate CoinHive called it quits in early 2019. Now, cybercriminals can use XMRig and Bitminer cryptominer variants, but as SonicWall says in their <a href=\"https:\/\/www.sonicwall.com\/resources\/2020-cyber-threat-report-pdf\/\">2020 Cyber Threat Report<\/a>, the collective volume of these two malware is just a \u201cfraction\u201d of the CoinHive-related malware.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">What Makes Cryptocurrencies So Attractive to Cybercriminals<\/h3>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"640\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/mining-cryptocurrency-types-1024x640.jpg\" alt=\"A stock graphic of physical crypto coins. \" class=\"wp-image-1618\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/mining-cryptocurrency-types-1024x640.jpg 1024w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/mining-cryptocurrency-types-300x188.jpg 300w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/mining-cryptocurrency-types-560x350.jpg 560w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/mining-cryptocurrency-types-1536x960.jpg 1536w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/mining-cryptocurrency-types-940x588.jpg 940w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/mining-cryptocurrency-types-480x300.jpg 480w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/mining-cryptocurrency-types.jpg 1600w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><figcaption>When you mine crypto, you receive digital &#8220;coins&#8221; that are added to your crypto wallet.<\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">Cryptocurrencies are popular with investors and cybercriminals alike because they\u2019re an alternative to the traditional, centralized banking. This means that instead of going through a bank, transactions take place using a decentralized ledger that\u2019s maintained by a network of users.&nbsp;&nbsp;&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">BitCoin, the world\u2019s first cryptocurrency, came into being back in 2009. Since then, the topic of cryptocurrency has become a big interest to investors and cybercriminals alike. According to <a href=\"https:\/\/coinmarketcap.com\/\">coinmarketcap.com<\/a>, there are now 7,487 cryptocurrencies in existence with a cap market value that surpasses $397 billion (as of Oct. 23, 2020).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This decentralization and lack of regulation is also what makes cryptocurrencies incredibly attractive to criminals. They like to use cryptocurrencies as a way to buy and sell less-than-savory items without government oversight on the black market, or to demand extortions from targets in ransomware attacks. When it comes to cryptojacking attacks, one of the most frequently targeted types of cryptocurrency is Monero.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Cryptojacking Is Only One Method of Cryptocurrency Theft\u2026<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">But just how big of a threat is cryptojacking? Well, if you asked that question back in 2018 or early 2019, we\u2019d say it\u2019s a major concern financially speaking. After all, cryptojacking attacks resulted in a total of 52.5 million hits in the first six months of 2019 alone, according to SonicWall\u2019s 2020 Cyber Threat Report.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Although it\u2019s nowhere near \u201cgone,\u201d cryptojacking overall now appears to be less of a concern overall in that vein. Of course, there\u2019s the Q2 2020 spike in browser-based cryptojacking reports. But I guess we\u2019ll just have to see what the rest of the year holds.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But why should a cybercriminal go through all of the hassle of mining cryptocurrency illegally when they can just steal it from your wallet another way?<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">The Rise of Wallet Cryptocurrency Theft Through SIM Swapping Attacks<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">A more common \u2014 and dangerous \u2014 method of stealing cryptocurrencies is through the use of SIM swapping attacks. SIM swapping in and of itself isn\u2019t a bad thing. In fact, users legitimately use SIM swapping to port their phone number to a new device in the event that their existing device becomes lost or gets damaged or stolen. It\u2019s a really useful tool that phone companies can use to help their customers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But as with many good things in life, cybercriminals like to twist this solution and use it to their advantage \u2014 and this is when SIM swapping attacks occur. In this type of attack, cybercriminals impersonate you and trick or manipulate one of your phone carrier\u2019s employees into thinking that they\u2019re performing a legitimate SIM swap for you. In some cases, they might even have someone on the inside that they\u2019re paying or blackmailing into doing these SIM swaps for them.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Regardless of the reason why they do it, the result is still the same: your phone number gets ported to the cybercriminal\u2019s new device, which means that the cybercriminal now has access to and control of any of your accounts that are linked to your phone (email, bank accounts, etc.). So, if you have a cryptocurrency wallet linked to your device, they can then use your number to gain access to it and steal your cryptocurrencies. (Because they control your phone, they often can bypass multi-factor authentication and two-factor authentication methods because one-time passwords and confirmations are often sent via SMS text messages and emails.)<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">So while it\u2019s true that cybercriminals target all types of people \u2014 politicians, celebrities, CEOs, and even random users \u2014 <a href=\"https:\/\/bitcoinmagazine.com\/articles\/the-rise-of-sim-swapping-how-and-why-bitcoiners-need-to-protect-themselves\">their attacks often target cryptocurrency investors<\/a> because of the potential for a big payout that\u2019s difficult to trace and even harder for law enforcement or individuals to recover.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">SMS-Based Two-Factor Authentication Isn\u2019t as Secure as You Might Think\u2026<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Researchers and Ph.D. students at Harvard and Princeton published a six-month <a href=\"https:\/\/www.issms2fasecure.com\/assets\/sim_swaps-01-10-2020.pdf\">empirical study on wireless authentication and SIM swapping<\/a>. Their research, which involves five major U.S. mobile carriers, shines a light on security vulnerabilities relating to SIM swap attacks and the use of SMS texting as a method of two-factor authentication.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">One of the readers, <a href=\"https:\/\/twitter.com\/random_walker\/status\/1215689761941336065\">Arvind Narayanan<\/a>, shared the following post on his Twitter research account:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"663\" height=\"751\" src=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/sim-swap-authentication-study-tweet.png\" alt=\"\" class=\"wp-image-1643\" srcset=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/sim-swap-authentication-study-tweet.png 663w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/sim-swap-authentication-study-tweet-265x300.png 265w, https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/sim-swap-authentication-study-tweet-560x634.png 560w\" sizes=\"auto, (max-width: 663px) 100vw, 663px\" \/><figcaption>This <a href=\"https:\/\/twitter.com\/random_walker\/status\/1215689761941336065\">Twitter post by Arvind Narayanan<\/a> speaks to some of the Harvard and Princeton research findings relating to vulnerabilities in the customer authentication processes for U.S. wireless carriers.<\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">The concerns about SMS text messages being redirected or intercepted is enough of an issue that the National Institute of Standards and Technology (NIST) suggested deprecating SMS as a second factor method of MFA authentication a few years ago. Although they eventually removed some spicy language that included words like \u201cdeprecation,\u201d what they did end up including in the final draft of <a href=\"https:\/\/nvlpubs.nist.gov\/nistpubs\/SpecialPublications\/NIST.SP.800-63b.pdf\">SP 800-63b: Digital Identity Guidelines: Authentication and Lifecycle Management<\/a> is the following:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p><em>\u201cUse of the PSTN for out-of-band verification is RESTRICTED as described in this section and in Section 5.2.10. If out-of-band verification is to be made using the PSTN, the verifier SHALL verify that the pre-registered telephone number being used is associated with a specific physical device.\u201d<\/em><\/p><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">They then quickly followed this statement with another:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p><em>\u201cVerifiers SHOULD consider risk indicators such as device swap, SIM change, number porting, or other abnormal behavior before using the PSTN to deliver an out-of-band authentication secret.\u201d<\/em><\/p><\/blockquote>\n\n\n\n<h2 class=\"wp-block-heading\">How to Prevent Cryptojacking From Affecting Your Site and Devices<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">This is a great question to ask. If you\u2019re wondering how to prevent cryptojacking, there are a few things that you should know. &nbsp;<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Educate Yourself (and Your Employees) About Phishing Emails &amp; Malicious Websites<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Phishing is a common way that cybercriminals try to deploy all types of malware or other malicious code. This includes cryptojacking code and malware. With this in mind, require all of your employees to engage in cyber awareness training and test their knowledge with random phishing tests. This will allow you to see how (or if) they\u2019re applying what they learn and identify areas where cyber awareness is lacking for future training.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Train &amp; Prepare Your IT Staff to Face Cryptojacking Threats<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Of course, when we say to train all of your staff, we mean all of them. This includes your IT pros. Ensure that they have the knowledge and tools they need to identify and respond to cryptojacking-related activities and payloads.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Block JavaScript In Your Browser<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Blocking JavaScript can help to protect you against drive-by cryptojacking. While it may seem inconvenient and may prevent certain functionalities, you must decide what is more important. &nbsp;&nbsp;<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Install an Ad Blocker in Your Browser or On Your Mobile Device<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Considering that malicious ads are a common way to deliver cryptojacking scripts and code, it\u2019s better to avoid that issue altogether by blocking ads. Plus, you get the added benefit of no longer being bombarded by a litany of political advertisements and other ad-related annoyances. &nbsp;<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Regularly Scan Your Website for Vulnerabilities<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">While this is an industry best practice that you should already be doing, we\u2019re just going to include it here just in case another reader isn\u2019t already doing so. (Yeah, we know you\u2019re already doing that on a daily basis, right?)<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Keep Your Devices and Software Patched and Up to Date<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Remember how we mentioned earlier that some cryptojacking payloads take advantage of existing vulnerabilities such as outdated plugins? Yeah, well, this can help you avoid that issue. Regularly updating your systems, software and devices ensures that you\u2019re not going to be a victim of an exploit that a publisher or manufacturer patched years ago but you never bothered to implement.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Final Thoughts: What Cryptojacking Is and How It Works<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Yeah, this is a lot of information to cover. However, I hope that this article answers your questions like \u201cwhat is cryptojacking?\u201d as well as \u201chow does cryptojacking work?\u201d and &#8220;how do you prevent malicious crypto mining?&#8221; <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">While there\u2019s certainly a lot more ground we could cover in an article like this, there\u2019s only so much time in the day and we also wanted to make sure that it was something everyone could follow along with regardless of their level of tech knowledge.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">So, to quickly summarize what cryptojacking is and how cryptojacking works:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Cryptojacking is a malicious form of crypto mining.<\/li><li>Unlike legal crypto mining, cryptojacking uses malicious payloads to deploy cryptojacking scripts and code onto unsuspecting users\u2019 devices and browsers.<\/li><li>These malicious tools hijack those devices\u2019 valuable resources without their owners\u2019 consent or knowledge. They can use these compromised devices as part of larger cryptojacking botnets.<\/li><li>Cryptojacking typically uses either device- or browser-based attack vectors.<\/li><li>This type of payload is often deployed in browsers and on popular websites via injections, outdated extensions, and malicious ads.<\/li><li>While cryptojacking was on the decline, browser-based cryptojacking picked up traction in Q2 2020.<\/li><li>There are several key indicators that your device may be running cryptojacking code, including poor device performance and high CPU usage.<\/li><\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Coinmarketcap.com reports that the cryptocurrency market\u2019s worth has surpassed $393 billion. Cryptojacking is one of the ways that cybercriminals try to get a piece of the action\u2026 What is cryptojacking&#8230;<\/p>\n","protected":false},"author":8,"featured_media":1649,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","tve_updated_post":"","tve_custom_css":"","tve_user_custom_css":"","tve_globals":{},"tcb2_ready":0,"tcb_editor_enabled":0,"tve_landing_page":"","_tve_header":"","_tve_footer":""},"categories":[13],"tags":[143],"class_list":["post-1641","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-security","tag-cryptojacking","post-with-tags"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What Is Cryptojacking? How to Define, Explain &amp; Prevent It - InfoSec Insights<\/title>\n<meta name=\"description\" content=\"What is cryptojacking? We&#039;ll explore what cryptojacking is and how it works, as well as how to detect &amp; prevent this illegal crypto mining.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What Is Cryptojacking? How to Define, Explain &amp; Prevent It - InfoSec Insights\" \/>\n<meta property=\"og:description\" content=\"What is cryptojacking? We&#039;ll explore what cryptojacking is and how it works, as well as how to detect &amp; prevent this illegal crypto mining.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/\" \/>\n<meta property=\"og:site_name\" content=\"InfoSec Insights\" \/>\n<meta property=\"article:published_time\" content=\"2020-10-23T18:45:34+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-12-03T15:29:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/what-is-cryptojacking.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"1000\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Casey Crane\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Casey Crane\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"20 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/\"},\"author\":{\"name\":\"Casey Crane\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#\\\/schema\\\/person\\\/559abd5fa4d9d651eaf18d9b9e91a64c\"},\"headline\":\"What Is Cryptojacking? How to Define, Explain &#038; Prevent It\",\"datePublished\":\"2020-10-23T18:45:34+00:00\",\"dateModified\":\"2020-12-03T15:29:55+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/\"},\"wordCount\":3957,\"image\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/10\\\/what-is-cryptojacking.jpg\",\"keywords\":[\"cryptojacking\"],\"articleSection\":[\"Cyber Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/\",\"url\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/\",\"name\":\"What Is Cryptojacking? How to Define, Explain & Prevent It - InfoSec Insights\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/10\\\/what-is-cryptojacking.jpg\",\"datePublished\":\"2020-10-23T18:45:34+00:00\",\"dateModified\":\"2020-12-03T15:29:55+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#\\\/schema\\\/person\\\/559abd5fa4d9d651eaf18d9b9e91a64c\"},\"description\":\"What is cryptojacking? We'll explore what cryptojacking is and how it works, as well as how to detect & prevent this illegal crypto mining.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/#primaryimage\",\"url\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/10\\\/what-is-cryptojacking.jpg\",\"contentUrl\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/10\\\/what-is-cryptojacking.jpg\",\"width\":1600,\"height\":1000,\"caption\":\"What is cryptojacking? How cryptojacking works and how to prevent it\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/what-is-cryptojacking-how-to-define-explain-prevent-it\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What Is Cryptojacking? How to Define, Explain &#038; Prevent It\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/\",\"name\":\"InfoSec Insights\",\"description\":\"SectigoStore.com Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/sectigostore.com\\\/blog\\\/#\\\/schema\\\/person\\\/559abd5fa4d9d651eaf18d9b9e91a64c\",\"name\":\"Casey Crane\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g\",\"caption\":\"Casey Crane\"},\"description\":\"Casey is a writer and editor with a background in journalism, marketing, PR and communications. She has written about cyber security and information technology for several industry publications, including InfoSec Insights, Hashed Out, Experfy, HackerNoon, and Cybercrime Magazine.\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What Is Cryptojacking? How to Define, Explain & Prevent It - InfoSec Insights","description":"What is cryptojacking? We'll explore what cryptojacking is and how it works, as well as how to detect & prevent this illegal crypto mining.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/","og_locale":"en_US","og_type":"article","og_title":"What Is Cryptojacking? How to Define, Explain & Prevent It - InfoSec Insights","og_description":"What is cryptojacking? We'll explore what cryptojacking is and how it works, as well as how to detect & prevent this illegal crypto mining.","og_url":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/","og_site_name":"InfoSec Insights","article_published_time":"2020-10-23T18:45:34+00:00","article_modified_time":"2020-12-03T15:29:55+00:00","og_image":[{"width":1600,"height":1000,"url":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/what-is-cryptojacking.jpg","type":"image\/jpeg"}],"author":"Casey Crane","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Casey Crane","Est. reading time":"20 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/#article","isPartOf":{"@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/"},"author":{"name":"Casey Crane","@id":"https:\/\/sectigostore.com\/blog\/#\/schema\/person\/559abd5fa4d9d651eaf18d9b9e91a64c"},"headline":"What Is Cryptojacking? How to Define, Explain &#038; Prevent It","datePublished":"2020-10-23T18:45:34+00:00","dateModified":"2020-12-03T15:29:55+00:00","mainEntityOfPage":{"@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/"},"wordCount":3957,"image":{"@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/#primaryimage"},"thumbnailUrl":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/what-is-cryptojacking.jpg","keywords":["cryptojacking"],"articleSection":["Cyber Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/","url":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/","name":"What Is Cryptojacking? How to Define, Explain & Prevent It - InfoSec Insights","isPartOf":{"@id":"https:\/\/sectigostore.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/#primaryimage"},"image":{"@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/#primaryimage"},"thumbnailUrl":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/what-is-cryptojacking.jpg","datePublished":"2020-10-23T18:45:34+00:00","dateModified":"2020-12-03T15:29:55+00:00","author":{"@id":"https:\/\/sectigostore.com\/blog\/#\/schema\/person\/559abd5fa4d9d651eaf18d9b9e91a64c"},"description":"What is cryptojacking? We'll explore what cryptojacking is and how it works, as well as how to detect & prevent this illegal crypto mining.","breadcrumb":{"@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/#primaryimage","url":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/what-is-cryptojacking.jpg","contentUrl":"https:\/\/sectigostore.com\/blog\/wp-content\/uploads\/2020\/10\/what-is-cryptojacking.jpg","width":1600,"height":1000,"caption":"What is cryptojacking? How cryptojacking works and how to prevent it"},{"@type":"BreadcrumbList","@id":"https:\/\/sectigostore.com\/blog\/what-is-cryptojacking-how-to-define-explain-prevent-it\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/sectigostore.com\/blog\/"},{"@type":"ListItem","position":2,"name":"What Is Cryptojacking? How to Define, Explain &#038; Prevent It"}]},{"@type":"WebSite","@id":"https:\/\/sectigostore.com\/blog\/#website","url":"https:\/\/sectigostore.com\/blog\/","name":"InfoSec Insights","description":"SectigoStore.com Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/sectigostore.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/sectigostore.com\/blog\/#\/schema\/person\/559abd5fa4d9d651eaf18d9b9e91a64c","name":"Casey Crane","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/c18d819d34a1995e91a4aa7518e9048df7856f336a1ede2262a572db7b1c2506?s=96&d=mm&r=g","caption":"Casey Crane"},"description":"Casey is a writer and editor with a background in journalism, marketing, PR and communications. She has written about cyber security and information technology for several industry publications, including InfoSec Insights, Hashed Out, Experfy, HackerNoon, and Cybercrime Magazine."}]}},"_links":{"self":[{"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/posts\/1641","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/comments?post=1641"}],"version-history":[{"count":0,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/posts\/1641\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/media\/1649"}],"wp:attachment":[{"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/media?parent=1641"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/categories?post=1641"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sectigostore.com\/blog\/wp-json\/wp\/v2\/tags?post=1641"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}