Microsoft warns cryptojacking is still a major threat, despite crypto winter

Cryptocurrencies
Migliori Bitcoin wallet (Image credit: Shutterstock / Wit Olszewksi)

Cryptocurrencies may be losing value against the dollar right now, but they are still a very desirable asset for cybercriminals everywhere.

According to a new Microsoft report, the popularity of cryptojacking is still relatively high and new malware variants are coming with advanced features and new ways to avoid detection.

In a blog post, Microsoft explained it detects cryptojackers on “hundreds of thousands” endpoints every month via its in-built Windows antivirus service.

Targeting servers

Cryptojackers are a type of malware that mines specific cryptocurrencies and sends the coins to a wallet owned by the hackers. The malware will not destroy the device it infects, and is not interested in stealing sensitive data from the victim, but will absorb much of the device’s computing power.

For that reason, cryptojacking operators are usually not interested in consumer-grade devices, but have rather set their sights on servers and virtual machines, which are usually more powerful and capable of mining more tokens, as compared to regular PCs and laptops.

Among the most popular cryptojackers is XMRig, a piece of malware mining the Monero token (XMR). Monero is a relatively old cryptocurrency, one that promises full anonymity to its users and, as such, is immensely popular among crooks and people dealing in illegal trade. 

Bitcoin, together with other cryptocurrencies, has been in a decline for the entire year. After hitting a high of approximately $68,000 in November last year, the world’s most popular cryptocurrency fell to roughly $17,000, before rebounding to the current $21,000.

Despite the unfavorable outlook at the moment, cybercriminals are still developing cryptojackers. Microsoft says the latest ones have become stealthier, “leveraging living-off-the-land binaries (LOLBins) to evade detection".

Most antivirus solutions should be able to spot them, though. Microsoft says it is able to detect cryptojacking by, among other things, analyzing CPU signals for patterns modeled after cryptojacking activity. 

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
A person at a laptop with a cybersecure lock symbol floating above it.
Cybercrime gang targets victims with "triple threat" attacks
Cryptocurrencies
Around $40 billion worth of illicit crypto transactions took place in 2024
botnet
YouTubers targeted by blackmail campaign to promote malware on their channels
Red padlock open on electric circuits network dark red background
CrowdStrike warns of fake job offer scam that is actually just malware
Flags of Iran, China, Russia and North Korea on a wall. China North Korea Iran Russia alliance
Cybercrime is helping fund rogue nations across the world - and it's only going to get worse, Google warns
Latest in Software & Services
woman listening to computer
AWS vs Azure: choosing the right platform to maximize your company's investment
A person at a desktop computer working on spreadsheet tables.
Trello vs Jira: which project management solution is best for you?
Autonomous finance
Quickbooks vs Quicken: what are the main strengths and weaknesses for your business
finance
Quickbooks vs Xero: which is the best for your business?
Group of people meeting
Zoom vs Google Meet: which is the best video conferencing tool for your business?
Fingers typing on a computer keyboard.
Microsoft 365 Personal vs Microsoft 365 Family: are there any real differences?
Latest in News
Seagate's new Genshin Impact Limited Edition SSD on a desk.
I didn't know an SSD could be cute until I saw Seagate's new Genshin Impact limited edition
European Union technical background
EU tech companies push for digital sovereignty, reducing reliance on US and others
ransomware avast
One of the most powerful ransomware hacks around has been cracked using some serious GPU power
Star Wars Knights of the Old Republic
Knights of the Old Republic remake developer Saber Interactive states all its projects are 'still in development'
google nest
Google is slowly phasing out its Assistant helper to make room for Gemini's reign in smartphones - here’s how it’s doing the same for smart home devices
Renault 5 Turbo 3E
Renault unveils its wildest EV to date and it comes with in-wheel motors and a rally-style vertical handbrake for drifting