Slashdot Mirror
New Skype Malware Uses Victims' Machines To Mine Bitcoins
An anonymous reader writes "A new piece of malware propagating across Skype has been discovered that tries to convince the recipient to click on a link. What makes this particular threat different is that it drops a Bitcoin miner application to make the malware author money. While malware has both spread on Skype and mined Bitcoins before, putting the two together could be an effective new strategy."
Dunno, but I've been waiting for this to happen. It's an obvious step for botnet owners.
No sig today...
This seems a few years late. It's so ungodly difficult to mine now that average Joe's infected computer just isn't going to manage to mine anything. Sure you may get lucky and get this installed on a few super high end machines, but last I heard it's getting hard to even do it with high end gpu's. Now, had this happened at the beginning of bitcoin (and I'm sure it did), the author would have actually stood a chance to make some money here.
Central Ohio Home Theater Installation - The Theater People
Dunno, but I've been waiting for this to happen. It's an obvious step for botnet owners.
It would be an obvious step a couple years ago. Bitcoin mining with CPUs is so pointless that they removed the function from the software. Most computers likely to be infected likely won't have a powerful GPU, and GPU mining will become pointless pretty soon regardless.
Even those who arrange and design shrubberies are under considerable economic stress at this period in history.
So when the user detects and presumably removes the malware, what happens to those mined bitcoins? Do they disappear? Are they still in the malefactor's account? Lastly, is there any chance of tracing and impounding the bitcoin account so that the bad guy doesn't profit?
Bitcoin mining with CPUs is so pointless .
Only if you're paying for the electricity yourself.
If somebody else is paying ... hey, why not?
No sig today...
hmm I don't think you get it.
Mining for bitcoin is the same process as maintaining the bitcoin network.
They are in effect being paid to run the bitcoin network.
Given the author of bitcoin is anonymous, it's unlikely he/she/it would be able to setup a foundation anonymously.
And even if they did, it would reduce bitcoin to nothing more than any of the numerous pre-existing failed e-currencies.
You can trust a open source piece of software run on millions of computers more than you can trust a foundation.
Had this been done with litecoin or namecoin, I could see some profit. Bitcoin? Sorry, difficulty rating is too high and just keeps going up.
On top of that, the type of people likely to click on this are also already likely exploited and running with limited system resources as-is.
Even the entire skype userbase couldn't stand up to the raw power behind half of the mining farms already out there.
What a stupid malware author.
Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
Bitcoin mining with CPUs is pointless .
Only if you're paying for the electricity yourself.
If somebody else is paying ... hey, why not?
There are better and more lucrative things to do with botnets. If you have a botnet and can't think of anything better to do with it, you can lease it out or sell it. The tiny amount of money bitcoin on commodity hardware would bring in pales in comparison to selling bank accounts, sending spam, renting out attacks, etc. Keep in mind that as a zombie computer becomes more "obvious"- computer is slower, fan runs at 100% all the time, etc, the more likely that the malware will be noticed and removed.
Even those who arrange and design shrubberies are under considerable economic stress at this period in history.
To the people that are saying it's not worth it for malware or botnets to mine coins with CPUs... a single CPU does about 4 MH/s. If 250,000 computers all over the world are affected, that's 1 TH/s, which is about 67 BTC/day at the current difficulty. About $1,000/day, or $30,000/month. Scale appropriately for how many computers are affected.
Yes, it's a waste of time and electricity for an individual to mine Bitcoins with their CPU, but if you have access to 100,000+ machines doing it, and you're not paying for the electricity, it's obviously worth it.
This idea that you can 'mine' for bitcoins is what makes me not take it seriously. It seems so arbitrary and ridiculous.
;)
I know, right? Like those lumps of yellow metal or shiny hunks of clear carbon we mine from the Earth. Entirely arbitrary and ridiculous to assign any value to them.
If it makes more sense to you, it may help to stop thinking of it as "mining", and instead consider it as pay for doing the work necessary to add transactions to the blockchain.
Keep in mind that as a zombie computer becomes more "obvious"- computer is slower, fan runs at 100% all the time, etc, the more likely that the malware will be noticed and removed.
Typical geek thinking.
So what if it gets removed? If it ran for a week on 100,000 machines with somebody else paying for the electricity then it was totally worth it.
No sig today...
Butterflylabs offer ASIC miners in configurations from 5 GH/s to 1500GH/s. Lets assume that the difference is the number of ASICs inside and that a single ASIC represents 5 GH/s.
According to the bitcoin wiki mining hardware comparison a 3.0 GHz core 2 duo E8400 gives 6.9MH/s so 400 thousand of them would give 2760 GH/s
Plus in a real botnet some of your zombies would also have GPUs.
note: i'm known as plugwash most places but i screwd up registering that here somehow in the past and now can't register
Except dealing with any third-parties increases your risk. Which one of them has loose lips, poor security, is a snitch or an undercover officer? Even criminals don't want to hang out with other criminals more than they have to.
I don't think you're around the typical computer user much, or their computers. You describe at least 60% of the non-technical people's computers that I know. They shrug it off. Computers suck and they'll never understand why. Eventually it will straight up die and they'll have another frustrating and expensive experience with Geek Squad. Rinse, repeat.
WUT?
67 BTC/day == $1,000/day? In other words - $16/BTC?
I thought it was more like $140 or so?
Maybe just add another zero in there...
Dunno, but I've been waiting for this to happen. It's an obvious step for botnet owners.
It has been going on since 2011.
No, because the opportunity cost is what matters. If I had 100,000 machines for a week, then instead of slowly mining bitcoins I could instead rent the botnet to spammers, DDoSers, etc and make more money.
In case you have not heard, Hotmail's PC chat application, Messenger, is two days from being sunset in favor of Skype. That will be causing a massive migration from users who ignored repeated upgrade emails from the MS team.
Just when I thought it was hard to convince my long-term guests that they should ignore the Messenger Icon, forcing themselves to learn the freshly installed Skype forced down our throats, I have to worry about their malware risks from a new vector of attack.
I very sparingly use the hotmail/live/OUTLOOK/identityCrisisNameDUJOUR account, and would have uninstalled it if I didn't have said friends from a land where people KNOW nothing else*. The loss of Hotmail integration, loss of social media-ish features, and bold GUI design choices to force you to try their $$$ calling plans really is making me consider shutting the doors on the account.
*We stay off FB. They know OF Yahoo Messenger which I never use. My GTalk is unknown to them and all this stinks of network effects.
Or you could do all of the above. Many DDoS uses reflection amplification and do not require a lot of cpu time and aren't running 24/7. Spamming is similar in that it is limited by the bandwidth. In fact, most of the nefarious things I can think of are limited by network, not anything else. Mining, on the other hand, does not really use networking and can use all the cpu and gpu they have to spare.
cept those lumps of metal are physical items that can be used for more than money, bitcoin is imaginary and doesnt even act as a good currency let alone anything else
Someone might modify the malware to still generate Bitcoins, but to record the coins generated. Then watch the blockchain to see who spends them. Bitcoins aren't anonymous. Mt. Gox has on at least one occasion frozen an account due to possession of "tainted" coins.
Bitcoin isn't as distributed as many enthusiasts think. 80% of transactions go through Mt. Gox, a/k/a Magic, the Gathering Online Exchange.
maybe Bitcoin was commissioned by computer hardware providers that wanted to give the processor market a boost when the Credit Crunch was at its worst.
A 250,000 machine botnet is extremely large, that puts you up in the worlds largest active botnets. Building and maintaining such a thing is not easy at all. To mine off that, you need to run a pool server that those machines can all get work from (as the existing pools will all ban you), which is a rather complex scaling problem all by itself, and then you have the fact that it's all a time limited technique. ASIC hardware has, from what I understand, finally started to ship in significant numbers from the Avalon guy and people will be wiring them in and starting them up over the next few months, which will shortly make just 1 terahash/sec not very much at all.
All things considered, whilst botnet mining can make sense today (especially with gpu miners), the perps know that it won't last.
`A new piece of [Windows] malware propagating across Skype has been discovered that tries to convince the recipient to click on a link. What makes this particular threat different is that it drops a Bitcoin miner application to make the malware author money. While malware has both spread on Skype and mined Bitcoins before, putting the two together could be an effective new strategy.`
AccountKiller
If you have Chrome and a twitter account, you could try twelephone.com. It uses WebRTC and could eventually prove to be a Skype killer. Firefox should work as well pretty soon, and IE around v13 or so (in 5 years).
Posting AC to preserve mods. I do know the owner of the site, but am not affiliated in any way.
Tulips got real popular at one time, too. Bitcoin is now trading at $140+/per unit, and the curve is very sharply up. In fact anyone who knows anything about markets will tell you, it's not sustainable. When Bitcoin is at a few thousand dollars a unit - next week or so at this rate - and people start getting REALLY greedy, that's when the fun will begin. Demand has to be based at least partly on something other than human greed. But yeah go take out a second mortgage and put it all in bitcoin. You could be rich within a couple weeks. Or more likely, you'll have to pay off a second mortgage the hard way...
Seven puppies were harmed during the making of this post.
They've been doing it a long time. That's why the ZeroAccess guys run their own pool (or tried to at least).
The new mid-level BFL mining chip can perform 60,000MH/s at 80 watts. My i5-2400K can do 14MH/s, my Nvidia GTS450 can do about 40MH/s, and my Radeon 5830 would have been able to do about 220MH/s under ideal circumstances and maxed out. So, this is so far into the not worth it category, it's comical.
what the hell are you talking about??!?! what does this have to do with the thread!?!?!
You should read up on the Bitcoin protocol/architecture. "Mining" isn't arbitrary, it's how the system verifies transactions and prevents double spending - you need mining for the whole system to work.
The fact that new coins can be gain from mining is not arbitrary either: first, it encourages people to mine, and therefore strengthens the network. Second, a big part of the Bitcoin appeal is that nobody can just inflate away the value of the coins one owns.
You may disagree with it, but it's definitively not arbitrary.
Dilbert RSS feed
Butterflylabs offer ASIC miners
They offer them, but they don't ever seem to ship them, and if they did ship all of the orders, the difficulty rate would go 4 to 16 times harder because of the sudden massive increase in mining.
Waterfox - a Firefox fork with legacy extension support, security updates and better privacy by default.
The virtual currency that is "safe", despite numerous examples of exchange hacks and theft.
What one has in an exchange isn't bitcoins, it's credit which they promise to exchange for bitcoins. It's bank money.
Wouldn't it make sense to hold off on your purchase if tomorrow your current bitcoin wallet can get you more?
It depends; the utility of having the item now may be greater than the gain by waiting. Otherwise, nobody would ever by phones, computers, cars, etc, since by waiting people could always get something better. Yet, these markets have a very high amount of sales.
Note: I don't own any Bitcoins; I think for now they're nothing but a speculator's toy. But I'm not writing them off just yet.
Dilbert RSS feed
There are better and more lucrative things to do with botnets.
The two are not mutually exclusive.
When our name is on the back of your car, we're behind you all the way!
Thank you for letting us know that the average /. poster knows more about ways to make money with bots than people that actually write and use them.
I can't "explain" an event that hasn't happened yet, except point out similarities to past events that this one so far is matching pretty well. But I'll just let this graph stand as an example of the past few days. Zoom out a little, say to the "D3" three day chart. If I was a retailer selling a $10 item and accepting bitcoin, I would currently have to be adjusting the price every minute. Does this make sense for a currency? Absolutely not. Better yet, when more money piles into bitcoin and prices elevate higher, a minor 0.1% fluctuation in bitcoin price could, as a vendor, represent my profit margin.
You cannot build a medium of exchange that lacks one of the basic components of accepted mediums of exchange: stability. A chicken is a chicken is a chicken. An ounce of gold is an ounce of gold. A US dollar, while not stable, degrades relatively slowly over time. Bitcoin? Let's not speculate. Look at the chart. Absolutely unusable as it stands, other than a medium of speculation. The long term prognosis is even worse if more greed and more money piles into the system. But hey, whatever man.
Seven puppies were harmed during the making of this post.
Yes, but you assume that
{Slashdotters} != {botnet devs}
Which IMO is not the most reasonable assumption to make. :)
Il n'y a pas de Planet B.
It did not turn into one of those cacophagy or homos-in-the-hayloft trolls.
Be content.
Il n'y a pas de Planet B.
And I worked for years with this site's original webmaster.
So what exactly does this pseudo-name-dropping have to do with the price of tea in China, anyway?
Il n'y a pas de Planet B.
Personally I think it'd be easier to talk to a Catholic about the illogic of transubstantiation, but you go right ahead.
Il n'y a pas de Planet B.
Keep in mind that as a zombie computer becomes more "obvious"- computer is slower, fan runs at 100% all the time, etc, the more likely that the malware will be noticed and removed.
I was mining Litecoins this morning and even though my computer was relatively quiet (mining with GPU) compared to fans at 100%, etc, it was still painfully slow. When I hovered over a link it would take a second to change colors. Literally a second. The user would probably notice that too. Though it wasn't laggy when I was mining Bitcoins so...who knows.
It's depressing how many people miss the obvious - two problems fixed by plugging in cables on Friday was a bit of a reminder for me on that one.
coprophagy.
cacophagy isn't typically considered a word, but read in greek it would mean "eating of evil".
"They were pure niggers." – Noam Chomsky
THINGS NOT TO DO BEFORE MORNING COFFEE ( updated ):
1. ... ... ...
2.
3.
4. Operate heavy equipment.
5. Juggle Greek prefixes without exercising the utmost care.
Thanks.
Il n'y a pas de Planet B.
Litecoin is CPU based and 4x's the total released blocks. Just sayin'.
"The more pity, that fools may not speak wisely what wise men do foolishly" - Touchstone,Shakespeare's "As You Like It"
My 6 year old computer with a slightly upgraded processor (Athlon X2 5200+) is ~ 3MH/s as a reference point.
"The more pity, that fools may not speak wisely what wise men do foolishly" - Touchstone,Shakespeare's "As You Like It"
The average /. poster knows more about anything than anyone. That's why everytime there's a scientific article there's people popping out of the woodwork going: "Aha! Bet they didn't think of that, did they?".
Preferably without actually reading the article that adresses that very point ;-)
People replying to my sig annoy me. That's why I change it all the time.
Okay, so how come none of that has happened yet even after multiple high-profile hacks and price crashes over the last several years? Each time something like that happens, plenty of people repeat every point you just made and insist that Bitcoin is going away this time for sure. But it only seems to get more popular over time.
I remember that arguement in the late 90's. "Netscape missed its earnings target, but it's getting more popular so buy buy!" or "The whole industry is overvalued, but that's not a problem because it's a new economy. Just look at how stock prices are going up"
D6 63 0D 70 89 81 BB 8E 7B 7C 5F 5D 54 EA AB 73
Surely, if you mine bitcoins, then you have to put the mined bitcoins somewhere. One small hack to replace the coins with bogus ones would make the whole botnet glow like a firefly?
Sent from my ASR33 using ASCII
I'm by no means a bitcoin apologist, but I it's not really different from using the same stolen cycles for any other commercial purpose, such as sending spam, hosting phishing sites, launching DDoS attacks, and so on. I wouldn't be surprised if there are cloud providers that run customers' jobs on botnets.
The interesting thing would be if the botnet is sufficiently large that it passes the magical 50% mark required to take control of the entire network.
I am TheRaven on Soylent News
You haven't even looked at the graph, have you? Yeah there are vendors that do accept BitCoin. Say you want to buy, er, a "t-shirt" on silk road. Your 1 Bitcoin t-shirt last week still costs 1 Bitcoin today. Except 1 Bitcoin was $30 last week, now it's $150+ (as of this morning). Still going to buy that t-shirt? Didn't think so. So the vendor has to drop his price to 0.20 Bitcoin today for the same tshirt, or he isn't going to sell any. Just stop being so damned dense and look at the graph. You cannot have a medium of exchange that is changing in value 500% a couple weeks.
Seven puppies were harmed during the making of this post.
Yeah... if you're going to try mining with a botnet, it would make a lot more sense to mine Litecoins instead. The Litecoin mining software still works relatively well with CPU miners, and there is a better chance that the currency is going to appreciate in value.
...making about 7 dollars per hour...maybe 70 dollars per hour...that seems pretty good to me.
Your hourly rate for federal crime is very reasonable. I will contact you, should I need ur services
Assuming that Kaspersky are not complete and utter idiots, and that the Win32 element of the name means what it normally means, I have no further interest in the story.
Bye.
Birds are not dinosaur descendants;birds are dinosaurs, for all useful meanings of "birds", "are" and "dinosaurs"