• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 27th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Hacking News
News

Hackers compromise AOL advertising platform to mine cryptocurrency

April 6th, 2018 Waqas News 0 comments
Hackers compromise AOL advertising platform to mine cryptocurrency
Share on FacebookShare on Twitter

The IT security researchers at Trend Mirco have discovered that on March 25th, 2018, malicious hackers compromised AOL’s advertising platform and modified its script to mine Monero cryptocurrency. The researchers also found MSN’s web portal’s Japanese domain was also infected by a similar script to mine Monero coins from the computing power of site’s visitors.

More: Hackers Hide Monero Cryptominer in Scarlett Johansson’s Picture

According to Trend Micro’s analysis, the compromised ads were found creating a large number of web miners. What is noteworthy is that in the case of MSN, its homepage was infected with the mining script which happens to be the default page of Microsoft’s browser and the page that Outlook (Hotmail and Live) users are redirected to once they log out from their account.

Furthermore, researchers identified 500 other websites infected with the same CoinHive cryptocurrency mining script used on AOL advertising platform. 

Hackers used unsecured AWS buckets for their operation

Upon further analysis, researchers discovered that hackers were running their campaign by hosting malicious content on unsecured Amazon Web Service (AWS) S3 buckets left open for public access apparently by their administrators. 

Hackers compromise AOL advertising platform to mine Monero

Detection for unique web miners rising steeply from March 24 to 25 (Credit: Trend Micro)

Unsecured AWS buckets have been creating problems for the last couple of years, however, when it comes to cryptocurrency mining Tesla cloud server and LA Times’ website had their AWS buckets compromised to mine Monero cryptocurrency.

As for web miners on AOL and MSN, the Trend Micro researchers believe that a significant number is users may have been impacted. However, the good news is that AOL was notified about the incident whose team was quick to remove the malicious script by March 27th, 2018.

More: Monero Mining Malware Infecting Android Smart TVs & Smartphones

“The campaign injected malicious script at the end of a JavaScript library on the unsecured S3 buckets. Website administrators can easily check for any script injected with code similar to the one shown below or the mining domains we listed in the Indicators of Compromise section to verify if their sites have been modified,” wrote Trend Micro.

We notified the AOL team about our findings. AOL removed the injected miner and resolved the issue by March 27.

Not for the first time

This is not the first time when a topnotch website had its advertising platform compromised. In January this year hackers used ad slots on YouTube to mine Monero cryptocurrency through CoinHive javascript code.

“Organizations should secure and always properly configure their servers to prevent these types of threats. To further protect themselves, they should choose the right cloud security solution based on their specific needs,” concluded Trend Micro.

How to block cryptocurrency mining in your web browser

There are several ways of blocking cryptocurrency minors from using your browser and CPU power including minerBlock and No Coin extensions on Chrome web store developed for the sole purpose of blocking cryptocurrency mining and cryptojacking. Both extensions are open source and open to the public, users can check out the source code on Github here and here.

Additionally, you can switch to Opera browser since its desktop and mobile versions for Android and iOS prevent websites from hijacking your browser to mine cryptocurrency.

  • Tags
  • Amazon
  • AOL
  • AWS
  • CoinHive
  • Cryptocurrency
  • Cyber Attack
  • Cyber Crime
  • hacking
  • internet
  • Monero
  • MSN
Facebook Twitter LinkedIn Pinterest
Previous article New macOS malware aims at infecting devices with malicious macros
Next article Intel removes remote keyboard app for Android rather than fixing its flaws
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
The Evolution and Development of Hacking

The Evolution and Development of Hacking

Google reveals details on active vulnerability affecting Windows 10, 7

Google reveals details on active vulnerability affecting Windows 10, 7

Ransomware group donates $20,000 in BTC to two charities

Ransomware group donates $20,000 in BTC to two charities

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
TikTok vulnerability allowed hackers to access users' phone numbers
Security

TikTok vulnerability allowed hackers to access users' phone numbers

50
Why you should never use free a VPN
Drones

Why you should never use free a VPN

41
Watch out as new Android malware spreads through WhatsApp
Security

Watch out as new Android malware spreads through WhatsApp

348

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us