您了解恶意软件和勒索软件(malware and ransomware)。您知道什么是计算机病毒(computer virus),并且可能已经感染了。但是你知道加密劫持吗?
Cryptojacking有点像勒索软件,但隐蔽性强,对使用它的犯罪分子来说可能更有价值。在您支付赎金之前,勒索软件会劫持您的数据,而加密劫持会使用您的计算机或手机资源来挖掘门罗币或以太坊(Monero or Ethereum)等加密货币。
你可能永远不知道它的存在。您可能会注意到的唯一一件事是您的计算机(computer isn)不像以前那样工作得好或快。
为什么 Cryptojacking 很重要?
你可能会想,“如果我什至不会注意到密码劫持,它不会花费(t cost)我任何东西,也不会伤害任何东西(t harm anything),我为什么要关心?”
从这些犯罪活动中赚到的钱不仅仅流向了住在地下室的黑客,他们购买了昂贵的酒和高档手表。这笔钱可能用于支持有组织的犯罪或国家支持的网络战。
根据hackmageddon.com的数据,2018 年超过 81% 的黑客事件是基于网络犯罪的,近 3% 被归类为网络战。他们必须以某种方式为所有这些黑客行为付出代价。
Cryptojacking 恶意软件(Cryptojacking Malware Get)如何进入计算机(Computer)?
Cryptojackers 以多种方式入侵您的计算机。有时,您可以通过打开电子邮件中受感染的附件或单击网站上的网络钓鱼链接(phishing link)来获取它。或者它可能会显示在您出于正当原因安装的浏览器附件中。(browser attachment)
这就像病毒传播的传统方式。如果cryptojacker以这种方式进入您的计算机,它将一直在您的计算机后台运行,悄悄地挖掘cryptocoins。
偷偷摸摸的加密劫持更加狡猾。它将隐藏在网站上或等待显示在您计算机上的广告中。然后,如果您在该网站上或该广告正在展示,它将开始使用您的计算机进行挖掘。当您离开站点时,cryptojacker 会被卸载,不会留下它曾经存在过的痕迹。
我的电脑或手机(My Computer or Phone)上有 Cryptojacker吗?
以前很明显。你的 CPU 使用率会飙升到接近 100%,当你只打开一个程序或者只是浏览一个网站时,你的计算机就会爬行。
不过,使用加密劫持者的黑客越来越聪明,而且越来越难以阻止。当它们第一次启动时,它们会尽可能多地消耗您的CPU 功率(CPU power)。这让人们对它的存在感到震惊。现在,他们在任何一台计算机上使用更少的资源,但试图访问尽可能多的计算机。
如何停止加密劫持?
继续练习良好的计算机安全性(computer security)并使用智能手机的安全功能。确保您使用的是防病毒应用程序(antivirus app),使您的操作系统(operating system)保持最新,并允许您的浏览器自由更新。
大多数主要的安全应用程序(security apps)现在都有加密劫持检测和保护(detection and protection)。看看获得ESET、Avast!防病毒和安全(antivirus and security)应用程序!,或诺顿(Norton)。
如果您想确保浏览器中没有运行偷渡式加密劫持(minerBlock)程序,您可以尝试Chrome的扩展程序,例如Coin-Hive Blocker、No-Coin或minerBlock(cryptojacker isn)。尝试Firefox的No-miner或minerBlock。所有主要浏览器都会继续在每次更新中加入安全功能,所以让这些更新发生吧。
加密劫持有什么好的用途吗?
可能有。它可以用作支持网站和应用程序的替代收入来源。当您在他们的网站上时,有些网站会询问您是否可以在您的计算机上使用基于 javascript 的加密矿工,有些则不会。
Pirate Bay、Salon.com、UFC.com和其他人过去曾尝试过此操作。人们反应不佳。作为一种创收方式,它对于用户疏离的高成本似乎收效甚微。
加密劫持的未来
加密劫持会成为一个持续的威胁吗?如果加密货币继续具有现实世界的价值(world value),它将会。但它对你有多大的威胁?
黑客越来越聪明。他们意识到,从数百万人那里偷一分钱比从少数人那里偷数千美元更难阻止。Cryptojacking对您和您的计算机使用(computer use)来说是一个小麻烦。用于资助更多邪恶计划的社会成本可能会继续增长。
尽你所能阻止它。使您的防病毒软件保持最新,并继续更新您的操作系统和浏览器(operating system and browser)。如果我们大多数人都能做到这一点,我们将继续保持加密劫持是一个小威胁。
What is Cryptojacking and How Do I Stop It?
You know about malware and ransomware. You know what a computer virus is and probably had one. But do you know about cryptojacking?
Cryptojacking is a bit like ransomware, but stealthy and potentially worth more money to the criminals that use it. While ransomware takes your data hostage until you pay the ransom, cryptojacking uses your computer or phone’s resources to mine cryptocurrencies like Monero or Ethereum.
You may never know that it is there. The only thing you might notice is that your computer isn’t working as well or fast as it used to.
Why is Cryptojacking a Big Deal?
You might be thinking, “If I won’t even notice
cryptojacking, it doesn’t cost me anything, and it doesn’t harm anything, why
should I care?”
The money made from these sorts of criminal operations don’t
just go to hacker’s living in the basement buying expensive booze and fancy
watches. The money could be supporting organized crime or state-sponsored
cyberwar.
According to hackmageddon.com, over 81% of hacking events in 2018 were cybercrime based and almost 3% were classified as cyberwarfare. They’ve got to pay for all that hacking somehow.
How Does Cryptojacking Malware Get on a Computer?
Cryptojackers invade your computer in several ways. Sometimes you can get it from opening an infected attachment in an e-mail or clicking on a phishing link on a website. Or it might show up inside of a browser attachment that you installed for a legitimate reason.
That’s like the traditional way that viruses were spread. If the cryptojacker gets on your computer this way, it will run in the background on your computer all the time, quietly digging up cryptocoins.
The drive-by cryptojacking is more devious. It will hide on
a website or in an ad just waiting to show up on your computer. Then it will
start mining with your computer if you are on that website or that ad is
showing. The cryptojacker is unloaded
when you leave the site, leaving no trace that it was ever there.
Do I Have a Cryptojacker on My Computer or Phone?
It used to be obvious. Your CPU usage would spike to near 100% and your computer would crawl when you only had maybe one program open or just browsing a website.
Hackers using cryptojackers are getting wiser though and it
will get harder and harder to stop. When they first started, they would consume
as much of your CPU power as they could. This alarmed people to its existence
though. Now, they’re using less resources on any single computer, but trying to
hit as many computers as possible.
How Do I Stop Cryptojacking?
Keep practicing good computer security and use your smartphone’s security features. Make sure you’re using an antivirus app, keep your operating system up to date, and allow your browser to update freely.
Most major security apps have cryptojacker detection and protection now. Look at getting antivirus and security apps like ESET, Avast!, or Norton.
If you want to make sure a drive-by cryptojacker isn’t running in your browser, you can try extensions for Chrome like Coin-Hive Blocker, No-Coin, or minerBlock. Try No-miner or minerBlock for Firefox. All major browsers are continuing to bake-in security features with each update, so let those updates happen.
Is There a Good Use for Cryptojacking?
There might be. It could be used as an alternate revenue
source to support web sites and apps. Some sites will ask you if they may use a
javascript-based cryptominer on your computer while you’re on their site, some
will not.
The Pirate Bay, Salon.com, UFC.com, and others have tried
this in the past. People did not respond well. As a method of revenue
generating, it appears to have small gains for the high cost of user
alienation.
The Future of Cryptojacking
Is cryptojacking going to be an ongoing threat? If cryptocurrencies
continue to have real world value, it will. But how much of a threat will it be
to you?
Hackers are getting wiser. They’re realizing that stealing
pennies from millions is much harder to stop than stealing thousands from a
few. Cryptojacking will be a minor nuisance to you and your computer use. The
social cost from it being used to fund more evil schemes may continue to grow.
Do what you can to stop it. Keep your antivirus up to date
and continue to update your operating system and browser. If most of us can do
that, we’ll keep cryptojacking a minor threat.
