Reader Advisory

Some articles posted in The SlickMaster's Files may contain themes, languages, and content which may neither appropriate nor appealing to certain readers. READER DISCRETION is advised.

Monday, October 05, 2020

Crytpomining attacks decrease in H1 of 2020

09/24/2020 10:28:55 PM

Kaspersky has revealed that over 1.7 mining malware aces has been prevented from attacking small and medium enterprises in the Southeast Asia region during the first semester of the new decade.

The latest report said that , the global cybersecurity company has detected 1,726,799 cryptomining attempts in the first half of this year targeting SMBs in Southeast Asia (SEA). Despite a slight decrease compared with the same period in 2019, cryptomining attempts logged the highest for SMBs in the region compared to phishing with 1,602,523 detections and ransomware with 504,304 detections from January to June 2020.

The report further states that four our out of six Southeast Asian countries are in the top 15 globally when it comes to cryptomining attempts – with Indonesia being tagged with the highest number of cryptomining detections against SMBs for H1 2020 – all despite a decrease of 40% compared to the same period last year.

Meanwhile, in the global ranks, Russia has been distinguished as the country with the most number of cryptomining prevented by the global cybersecurity company in the second quarter of 2020, followed by China, India, Indonesia and Vietnam.

“This threat is clearly not as popular as phishing and ransomware primarily because its presence is usually unannounced. With a pandemic situation that indirectly encourages the development of digital transformation in the SEA region, it is appropriate for business drivers to understand the potential risks of cryptomining. This threat is silent, hidden inside our devices and networks, slowly sucking our bandwidth, electricity, and damaging our hardware which are all costly at a time when SMBs need their cash flow the most,” says Yeo Siang Tiong General Manager for Southeast Asia at Kaspersky.

Kaspersky describes cryptojacking is the unauthorized use of someone else's computer to mine cryptocurrency. Also known as malicious mining, this cyberattack was made when cybercriminals use a variety of covert means to install mining programs on other people's computers and take all the profits from cryptocurrency mining without incurring equipment or electricity costs.

A cryptomining malware can overwhelm a system, causing severe performance problems, which will have an extremely rapid effect on businesses' networks and the most important, their customers. What makes cryptojacking a threat that can be dangerous for businesses is that cryptocurrencies remain a more easily anonymized form of ransom payment. In conclusion, cybercrime like miners is very capable to do their work for years without attracting any attention, thus, being undetected for a long time.

“We understand that cybersecurity can be an afterthought for SMBs in this challenging period. However, defenses are needed to foil malicious attempts which can damage their systems, devices, and their pockets. There are simple ways to avoid cryptomining such as never using pirated software and deploying enterprise-grade protection into your servers and endpoints. For our part, we are also offering free cybersecurity training for SMBs to help them educate their employees against these threats online,” adds Yeo.

With all that said, Kaspersky is offering a free three-month Automated Security Awareness Training aimed at helping small and medium-sized companies to improve their employees cybersecurity know-how. This program works with up to 500 users and can olny be availaed until the end of September 2020. To know more, visit 

Meanwhile, The global cybersecurity company is also supporting the SME segment in fortifying its cyber defenses by giving a buy 1 year license get 1 year license for free promotion of unrivaled endpoint solutions that include the following: Kaspersky Endpoint Security for Business, Cloud and Cloud Plus, Microsoft Office 365, and Hybrid Cloud Security.

In essence, some signs that may point towards devices being used for crypto-mining are:

  • Substantial increase in electrical consumption and usage of CPU
  • System response will slow; the device’s memory, processor, and graphics adapter are bogged down completing cryptomining tasks.
  • Wasted bandwidth will decrease the speed and efficiency of legitimate computing workloads
  • Batteries will run down much faster than before, and devices may run quite hot.
  • If the device uses a data plan, users will see data usage skyrocket.

To proactively safeguard your business against cryptomining, here’s what you should focus on:

  • Enhancing the cybersecurity awareness of your employees is the first step, but a highly critical one for any business that takes cybersecurity seriously.
  • Monitor web traffic – frequent queries to domains of popular cryptomining pools are a clear sign that someone is mining at your expense.
  • Keep track of your server load. If the daily load changes suddenly, that may be a symptom of a malicious miner. Carrying out regular security audits of your corporate network may also be helpful.
  • Ensure that all your software are up to date as soon as they are available so that you are well prepared for the latest cyberthreats.
  • Implement the right cybersecurity solution for every aspect of your business operations, both hardware and software related. Use a dedicated endpoint security solution equipped with web and application control, anomaly control and exploit prevention components that monitor and block suspicious activity on the corporate network.
Author: slickmaster | © 2020 The SlickMaster's Files

No comments:

Post a Comment

Feel free to make a comment as long as it is within the bounds of the issue, and as long as you do it with decency. Thanks!