North Korea Could Be Secretly Mining Cryptocurrency On Your Computer

An anonymous reader shares a report: North Korea has a cryptocurrency infatuation. Its government has been accused of unleashing a global ransomware attack to raise bitcoin, mining the cryptocurrency within its borders, and hacking South Korean bitcoin exchanges. Now, research firm Recorded Future says there's a strong chance Kim Jong-un's regime is experimenting with malware that secretly mines currency using other people's computers. Malware crypto-mining is a new global trend among hackers, says a new report from Recorded Future, which monitors discussions among "the criminal underground" on the so-called dark web. Starting this year, hackers seem to be shifting away from high-intensity, widespread ransomware attacks, towards "long-term, low velocity" crypto-mining in the background. Recorded Future has not detected specific instances of North Korean malware mining, but believes that the regime has the knowhow, motive, and interest in cryptocurrencies to execute similar attacks. "North Korean threat actors have prior experience in assembling and managing botnets, bitcoin mining, and cryptocurrency theft, as well as in custom altering publicly available malware; three elements that would be key to effectively creating and managing a network of covert cryptocurrency miners," Recorded Future's report reads.

What you can conclude from these constant news:

North Korea and Russia are NOT the enemy. That's the only thing that's for sure.

Re:What you can conclude from these constant news:

[Ogive17]

As an American, I also blame our own government. However to deny the actions of Russia and N. Korea simply because you don't like the US... that's incredibly naive.

I have family in Japan - there are legitimate concerns about missiles flying over their country. They have enough to worry about with earthquakes, volcanoes, typhoons, nuclear plant meltdown.. missiles from N. Korea is a bit over the top.

Russia - they invaded Ukraine and still occupy part of it. They are just as active covertly in the affairs of every government as the US is. To them, it must be funny watching a significant portion of Americans deny reality because "their guy" won the election.

Now I don't believe their meddling in the election had a big impact.. Hillary just isn't a likable person. Did it sway some votes... probably.. was it enough to change the outcome? Highly unlikely. Hillary still got more votes, just not in the places she needed them.

Re:What you can conclude from these constant news:

[haruchai]

Russia "invaded" Ukraine after we created a revolution ( Victoria Nuland's fuck the EU) and put in a REAL NAZI? You have kool-aid all over you.

But America & Russia do a lot of asshattery outside their borders. The Cold War was never really over.

Re:What you can conclude from these constant news:

[Type44Q]

That logic only makes sense if you have an IQ over ~135... i.e. don't expect those that don't (most of us) to be able to reach such an obvious conclusion.

Re:What you can conclude from these constant news:

... just not in the places she needed them.

Just watched 'The Australian interview' where she describes the bitterness of realizing millions of people hate her, which she blames on an misinformation campaign conducted mostly on Facebook. In her eyes, she won the public debates so the people should have voted for her. She was criticized for being 'soft on herself' with an example being her abusive attitude towards Trump supporters. Her attitude was 'Look at which people Trump cares about now (eg. neo-nazis): I was right'.

Good God, Hillary has turned into a delusional harpy.

Just. Go. Away.

Hillary is an inveterate liar with horrible political instincts - just go through the different versions she went through over her email server. First there wasn't one. Then there wasn't any emails on it. Then there weren't any classified emails on it. Then there weren't any emails marked classified. And so on, keeping the story alive for a whole damn year, because every few weeks more evidence would come out that proved Hillary's previous statements were, ummm, inconsistent with the facts as they were now known. In short, she repeatedly lied about her email server. Period.

Do you really think Hillary didn't go to Michigan or Ohio or Pennsylvania as the election approached because she didn't know what was happening? Like hell she didn't - she knew. Obama even spent the day before the election in Michigan campaigning for Hillary. Do you think Obama would have spent the Monday before the election in Michigan if Democrats didn't think it was critically important?

She KNEW the Rust Belt states were going to be close.

So why didn't Hillary go? Because when she made appearances there, her support DROPPED. (I actually saw an analysis of that phenomenon a few weeks after the election - unfortunately I can't find it now.)

NOBODY TRUSTS HILLARY. Period.

NOBODY LIKES HILLARY. Period.

They vote for her because the agree with her politics, unlike Barack Obama and Bill Clinton, truly personable and likeable people. And those two likely got a lot more votes because of that. Hillary will never get those types of votes - with Hillary, you vote for the policies, not the person.

Hillary has been a public figure for 25 years. A mere $100,000 spent on Facebook ads fully 24 years into her public life didn't change an entire nation's opinion about her.

Hillary was probably the ONLY Democrat who could lose to a blowhard like Trump. The only reason she won the Democratic nomination in the first place was because she'd bought off the entire Democratic Party apparatus, and after Obama surprised her in Democratic the caucuses in 2008, HIllary had her thugs in place to squash Bernie in Iowa.

Seriously - if you could pick any one Democrat to be President, would Hillary REALLY be your first choice?

Re:What you can conclude from these constant news:

[DCFusor]

Agreed. People should look at the big picture and the norms (which aren't great for any player here) before using a small sample of recent events as justification for hateful opinions. This isn't really new stuff here to justify extra "Russia-bad" think, though obviously there are people who think their paychecks depend on that meme posting. In fact we've "poked the bear" damn hard a few times lately, with a very statesmanlike response on their part...we'd have never put up with what we've done to them, but they've put up with mistreatment (so far) pretty nicely...
I'm not pro-Russian-government - but I don't hate Russians or pretty much anyone else. I'm not fond of most governments and the lies they tell their people to subjugate them, though. Russia's far from alone on that scorecard...Which was really my point.
FWIW, they are kinda recovering from having lost their previous empire. They had exactly two warm-water naval ports...One in Crimea, the other one in Syria. Guess where we've been meddling and trying to "spread democracy"? No government is telling us the truth that it's really all about who gets to run pipelines from where (either Arab or Russian) to the EU to keep them warm and cop their bucks. Yep, follow the money, the rest is just PR and propaganda kark.

Re:What you can conclude from these constant news:

[MoaDweeb]

Russia invaded Ukraine, annexed Crimea and shot down an airliner. All at the instigation of the Putin.
At least he, like us all, will die someday.

Come and fuck over my country motor mouth, we are much smaller than the US. Could your Navy get here without breaking down?

Re:What you can conclude from these constant news:

[jwhyche]

Hillary was probably the ONLY Democrat who could lose to a blowhard like Trump.

Seriously, this is what I've been saying for a year now. Trump didn't so much as win as Hilary lost the election. Most people that I know that voted for Trump tell me they voted for him because they just couldn't vote for Hillary.

This line should put everything is perspective about Hillary Clinton. "She lost to Donald Trump."

ohhh soo scary

you mean how American companies secretly mine bitcoin using javascript?

Enjoy your western propaganda FUD of the day

Re:ohhh soo scary

[jwhyche]

Which seems to be a good reason to run the Edge browser. I don't believe it supports java anything.

Now we know why...

[bobbied]

Now we know why DPRK needed the internet connection though Russia for those 20 IP addresses they have..

No, They Are Not

"Recorded Future has not detected specific instances of North Korean malware mining"

But we're still going to make up a sensationalist story about it so that maybe you can visit our page that does Coinhive you into generating some cryptocurrency.

Thanks M'Smash, you really suck!

It fits

[pr0t0]

I have a long-standing axiom that the more something is advertised to be true, the less likely it is to actually be true. Oft-repeated superlative phrases like "fastest network", "number one in service", "widest selection", etc. can generally be taken as slowest, worst, and limited respectively.

If you feel like you're being manipulated, it's because you are. This is particularly true when you see sudden ramp-up in coverage about a story, nation, or technology where previously there had been none. A single story is one thing, but one followed by a break of a few months and then two more with shorter breaks between, then suddenly one every 2-3 weeks on the same subject sets off my BS meter.

Re: It fits

[sound+vision]

Yeah, it's not like North Korea has been in the news regularly for half a century, or they have any kind of espionage program that recruits and trains crackers, or they have an interest in circumventing the global financial system with cryptocurrencies. Only a fool would believe that!

Re:It fits

[zifn4b]

Oft-repeated superlative phrases like "fastest network", "number one in service", "widest selection", etc. can generally be taken as slowest, worst, and limited respectively.

You can't do that at least in the United States. It's considered fraud if the claim is being purposefully misrepresented. That used to be the case in the past though. Today you hear things like "Rated fastest network according to XYZ" and "Number one in service according to JD Power and Associates". Many of these are easy to verify. For example, if Comcast claimed to be number one in service according to JD Power and Associates, it's easy to check and they would have a lawsuit on their desk in a microsecond if they misrepresented that. It still doesn't hurt to "trust but verify" though.

Re: It fits

[pr0t0]

That's a fair point. But for most of the last 50 years, NK hit the news only a few times a year if that. There was a slight uptick when Kim Jong-un took over.

But since the election, there has been a steady increase in coverage and rhetoric. There's been that "ramping-up" that I was talking about. I'm feeling like a frog in the warming water. If we go to war with NK, everyone in the US will feel it is perfectly justified and we had no choice. The war machine will spin up, and defense contractors will rake in 100's of billions to trillions of dollars from US taxpayers in the form of long-term debt.

Maybe that's too "tin foil hat", but it wouldn't shock me to see us go to war in the next three years. It will probably happen in the last 14 months of Trump's term, and the argument will be made that we shouldn't switch presidents in midst of a war.

We'll "win" that war. There will be much rejoicing in SK. And there will be lots of infrastructure rebuilding contracts to hand out, most of which will go through several layers of outsourcing until it reaches a point where the people actually doing the work will be getting less than 1% of the original contract amount.

Re: It fits

[GNious]

We'll "win" that war. There will be much rejoicing in SK.

If you lot go to war with Best Korea, fully expect a scorched earth approach from them, targeting South Korea.

A non issue for security

[CustomBuild]

North Korea doesnâ(TM)t have an additional capability for executing code on your machine. If you secure your resources against the multitude of on going attacks, you most certainly are secure against North Korean mining code.

Re: A non issue for security

[sound+vision]

I don't think you are aware of what capabilities they have. You must also not be aware they have an ongoing program to recruit and train crackers, that it is among the best of such state-sponsored groups, and that it's a key part of their asmymmetrical warfare. If they don't have exclusive exploits yet, they will soon. And you won't know about it until it's in the news that Sony got hacked again or whatever. And at that point, you'll stick your fingers in your ears and mumble something about Hillary's emails.

Speculation isn't news

[SlithyMagister]

Any /. article whose subject includes "could be" or similar wording is speculation, not news.
Almost anything "could" happen.

TFS says there's "a strong chance" that NK is doing something, but presents no evidence.
From TFA: "Recorded Future has not detected specific instances of North Korean malware mining"

Articles such as this are tabloid-worthy, and IMO reduce the overall quality of /.
Enjoy your day.

They only have 20 websites

[qzzpjs]

I thought mining from websites would only happen if you went to a page that uses it. Anyone browsing one of the 20 web sites that North Korea has? If they're even on the general Internet at all.

I guess they could be doing through hacked ads or something like that, but we're all running ad-blockers right? Right?

Re:They only have 20 websites

[zifn4b]

I thought mining from websites would only happen if you went to a page that uses it.

There are multiple attack vectors.

Soo.. how much longer until the Bitcoin crackdown?

[leonbev]

I'm sure that various world governments have to be getting sick of Bitcoin and Etherium funding so-called "terrorist" states like North Korea and Iran. How much longer is it going to be before they start forcing ISP's to block transaction requests at the network layer?

Sure, the cryptocoin developers will find workarounds for such measures, but even a threat of a government trying something like this would likely cause the value of the currency to drop.

I thought I was being targeted in a scam

[TomR+teh+Pirate]

I thought I was being targeted in a scam when that woman with the Indian accent and claiming to be from Microsoft told me my computer was spreading viruses on the internet, but maybe it was all true. I hang my head in shame for the things I said to her.

Really?

[Weaselmancer]

Recorded Future has not detected specific instances of North Korean malware mining, but believes that the regime has the knowhow, motive, and interest in cryptocurrencies to execute similar attacks.

So in other words - you have exactly nothing to say, but spent an entire article saying it.

It's funny to watch us gearing up for war

[rsilvergun]

with a constant stream of anti-NK news in all outlets. Seriously, they did this for Iraq too and nobody remembers it. Or if they do they don't care, they're just looking forward to the next war.

BTW, what are we gonna do with 22 million shell shocked refugees in a country that doesn't have any natural resources whatsoever?

Who will win?!?

[RumGunner]

Will fear-mongering warhawks trying to scare the public against the "red" threat succeed in getting Bitcoin banned? Or will Wall Street crony-captalists eager to scam as much money out of digital currency as possible prevail?

Could this be the end of Bitcoin?!?! Will a nuclear-powered DPRK succeed in harvesting every last drop of your spare processor power??!? Will Wall Street bilch billions from Americans before driving Bitcoin into the ground?

I can make sensationalist headlines too.

If I had a dime for every could be / may have

[CptLoRes]

I could have been a rich man..

How much money can they even get?

[Zontar_Thing_From_Ve]

What kind of money are we even talking about here realistically? One thousand dollars? Five thousand?

What's with these headlines?

[DontBeAMoran]

(insert evil country/government/company name here) could be secretly (insert hot topic of the day here) on your (computer|smartphone|tablet|smart tv|digital assistant|electric car)

Re:What's with these headlines?

[Areyoukiddingme]

(insert evil country/government/company name here) could be secretly (insert hot topic of the day here) on your (computer|smartphone|tablet|smart tv|digital assistant|electric car)

It's called clickbait. Just slightly more sophisticated clickbait than one weird trick, but still clickbait.

I can't wait for the collapse of Internet advertising to finally come to fruition. Unfortunately I'm probably going to be waiting a very long time. PT Barnum was right: there's a sucker born every minute. There are enough suckers to fuel Internet advertising for the rest of eternity.

I did my part. I didn't click on the link to the article. But my ability to stem the tide is a match for King Canute.

Re:What's with these headlines?

[DontBeAMoran]

I rarely click on links to the articles. What I usually do is search for the company name and go directly to their website. If I'm already at a company's website, there's no point in showing me ads.

Re: What you can conclude from these constant news

Something tells me that we slaves seim in vast pools of asshattery from almost every country. Any dept. of defence anywhere really

Bold claims

That's a bold claim that N.K. is doing this. Any real evidence beyond an IP address? All hackers (especially nation states) automatically change MAC address and IP address, but they might put one pointing back to Russia if they want you to blame them.

Re:Soo.. how much longer until the Bitcoin crackdo

[Areyoukiddingme]

Sure, the cryptocoin developers will find workarounds for such measures, but even a threat of a government trying something like this would likely cause the value of the currency to drop.

You seriously misunderstand the nature of many cryptocurrency users. An overt move by any government against any cryptocurrency would do nothing but validate their worldview and cause them to double down on their devotion to their cryptocurrency of choice. Bitcoin value against the dollar would go up, not down if a government tried to restrict its existence by interfering with the network. Even if it actually did become harder to use. A fair number of cryptocurrency users are conspiracy theorists who have been feeling immensely validated since the Snowden leaks. A move against Bitcoin would be yet more validation.

Easy to detect

[zifn4b]

In order to mine cryptocurrency effectively it has to use CPU/GPU power. Watch your temps on both CPU and GPU. Plenty of tools available to actively monitor. If your CPU/GPU is running while you think it should be idle figure out what process is doing it. If you don't know how to do this, you shouldn't own a computer.

Re:Covfefe

[bobbied]

Just checking in. Is America great again, yet?

It never was

I sure hope you are joking because history says exactly the opposite is true. Anybody paying attention to our Civil war, WW1 and WW2 firmly realizes that the USA has done truly great things.

If you are serious, then one thing we've not apparently accomplished is providing our children an elementary education in history.

Re:Trump is going to prison for TREASON

[nospam007]

"Moscow Donald has disgraced his family"

Hardly, his granddad operated a whorehouse in Klondike after having fled military service, I guess none-spurs weren't invented yet.
So the apple didn't fall far from the family tree.

Re:Covfefe

[bobbied]

And what do you think the Civil war was about? Yea, it didn't have *anything* at all to do with the divergence between our pledge in our foundational document (All men are created equal) and our practice of allowing slavery. No, we didn't lead the industrialized world by doing away with slavery.. Not at all... No, nearly a million died for some squabbles over who got elected president and the Civil war had *nothing* at all to do with slavery.....But actually it did have everything to do with that now didn't it?

We didn't start WW1, nor did we start WW2, in fact we attempted to stay out of both of these wars, almost too long in both cases. We didn't have anything to do with how or why the shooting started. But, it became apparent that freedom was under attack, for both us and our allies and left us with no other choice but to step in, spill our blood and treasure on foreign soil to maintain freedom. True to our creed, as a nation, we then returned the land we liberated with our treasure and blood to it's previous owners so they could enjoy their God given freedom, freedom WE paid for and won FOR them, because we as a nation believe in freedom and self determination.

It takes a great nation, guided by great principles, to do such things as these. To send our young men to die, not to protect our territory, but protect the cause of freedom for others. To fight ourselves, for freedom's sake. To return territory back to the aggressors in a wars we didn't start, but where forced to participate in.

Re:If they are...

[thegarbz]

Did it also patch /proc to keep my fans spinning quietly? In which case I'm likely thermally throttling and they are still doing it very slowly.

Re:Soo.. how much longer until the Bitcoin crackdo

[rtb61]

They don't want to block transaction requests, they like what the government of China did, they want to data mine crypto currency transactions and not just because the spy vs spy types are heavily into it, sort it, as it crumbles away because it's like the number flag for criminal activity, tax evasions, espionage, computer hacking. The more crypto currency you have, the worse you look to criminal investigators. Stories like this, the early shots in the PR meme to attack crypto currency users, are a strong indicator of where all this will be going and they will be coming after you.