Cryptojacking Malware Found on Make-A-Wish Foundation Website
Hackers have compromised the website of global non-profit organization the Make-A-Wish Foundation with cryptojacking malware.
This is according to a report by cybersecurity firm Trustwave.
According to researchers, crypto jackers incorporated a JavaScript (JS) miner CoinImp into the domain worldwish.org to illicitly mine privacy-focused cryptocurrency Monero (XMR). Identical to the notorious Monero mining software CoinHive, CoinIMP has been using the computing power of website visitors to mine cryptocurrency.
The report also indicated that the CoinImp script compromised the website through the drupalupdates.tk domain, which is linked with another campaign that took advantage of a critical Drupal vulnerability to infect websites since May 2018.
The researchers emphasized that the recently detected campaign utilized a number of techniques to escape detection, including modifications of its already obfuscated domain name, as well as various domains and IPs in a WebSocket proxy.
The report indicated that they have already contacted Make-A-Wish to report the cryptojacking attack, but the foundation failed to respond. However, the malicious injected script was removed shortly after Trustwave attempted to reach the foundation.
According to data from Bloomberg, scales of cryptocurrency mining attacks have increased by up to 500 percent in 2018. Lately, Internet security provider and research lab McAfee Labs discovered a new Monero-mining malware called WebCobra that supposedly comes from Russia.
This month, Japanese global cybersecurity company Trend Micro noticed a new strain of crypto-mining malware that are focusing on PCs operating on Linux.
Posted from my blog with SteemPress : http://www.cryptalnews.com/cryptojacking-malware-found-make-a-wish-foundation-website/