Security news aggregator

Latest coverage for Cryptominer

Stay updated on Cryptominer threats. Explore news, trends, and insights on cryptocurrency mining malware in information security. Stay safe online.

83 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Cryptomining software uses computing power to validate cryptocurrency transactions and earn digital coins. When deployed maliciously, cryptomining malware hijacks devices without user consent, exploiting CPU or GPU resources to generate cryptocurrency for attackers. This unauthorized use can affect endpoints, servers, cloud instances, and IoT devices, often spreading through compromised software or exposed services.

From a security perspective, cryptomining malware can degrade system performance, increase power consumption, and cause hardware stress or overheating. Detection relies on monitoring unusual resource usage and network traffic linked to mining pools. Mitigation includes patching vulnerabilities, restricting execution of unauthorized binaries, and applying endpoint protection that identifies mining behaviors. Understanding cryptominer activity helps prioritize incident response and resource allocation in affected environments.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 83

Researchers uncovered 222 GitHub repositories spreading malware through fake Go packages, delivering loaders, stealers, RATs, and cryptominers. Socket’s security research team started with the investigation of a single malicious Go module: github[.]com/kaleidora/dnsub-scanning-tool, which presented itself as a DNS and subdomain scanning utility. Pulling on that thread exposed something significantly larger: a network of 222 confirmed […]

Trend Micro Research, News and Perspectives 3 weeks, 4 days ago

From Langflow to Monero: Inside CVE-2026-33017 Cryptominer

We tracked a cryptocurrency-mining campaign exploiting CVE-2026-33017, which revealed how threat actors are now scanning exposed AI application infrastructure for their next foothold.

The Register 6 months, 4 weeks ago

Crypto crooks co-opt stolen AWS creds to mine coins

'Within 10 minutes of gaining initial access, crypto miners were operational' Your AWS account could be quietly running someone else's cryptominer. Cryptocurrency thieves are using stolen Amazon account credentials to mine for coins at the expense of AWS customers, abusing their Elastic Container Service (ECS) and their Elastic Compute Cloud (EC2) resources, in an ongoing operation that started on November 2.…

Wiz says React2Shell attacks accelerating, ranging from cryptominers to state-linked crews Half of the internet-facing systems vulnerable to a fast-moving React remote code execution flaw remain unpatched, even as exploitation has exploded into more than a dozen active attack clusters ranging from bargain-basement cryptominers to state-linked intrusion tooling.…

React2Shell continues to witness heavy exploitation, with threat actors leveraging the maximum-severity security flaw in React Server Components (RSC) to deliver cryptocurrency miners and an array of previously undocumented malware families, according to new findings from Huntress

A new large-scale campaign has been observed exploiting over 100 compromised WordPress sites to direct site visitors to fake CAPTCHA verification pages that employ the ClickFix social engineering tactic to deliver information stealers, ransomware, and cryptocurrency miners

A financially motivated threat actor has been observed exploiting a recently disclosed remote code execution flaw affecting the Craft Content Management System (CMS) to deploy multiple payloads, including a cryptocurrency miner, a loader dubbed Mimo Loader, and residential proxyware

Loading more headlines...