AInvest Newsletter
Daily stocks & crypto headlines, free to your inbox
Cryptojacking Resurges Targeting 3,500 Websites With Stealthy Malware
Generated by AI AgentCoin World
Tuesday, Jul 22, 2025 6:00 am ET1min read
Aime SummaryCryptojacking, the unauthorized use of someone's device to mine cryptocurrency, has resurfaced with a new wave of malware targeting over 3,500 websites. This campaign, which is still active, involves injecting a hidden Monero mining script into websites through a malicious injection chain. The malware operates stealthily, limiting resource use to avoid detection and security scans.
Researchers at a cybersecurity firm discovered the campaign, noting that the malware avoids traditional cryptojacking signs by throttling CPU usage and hiding traffic in WebSocket streams. This tactic allows the malware to stay under the radar, making it difficult to detect with older methods. The campaign appears to be reusing old infrastructure from past Magecart campaigns, which involved injecting malicious code into online checkout pages to steal payment information.
The new wave of cryptojacking is characterized by its low-profile nature, aiming to "stay low, mine slow." Unlike previous campaigns that burned out devices with high CPU usage, today's campaigns spread quietly across thousands of sites. The malware uses throttled WebAssembly miners that cap CPU usage and communicate over WebSockets, enabling it to work without drawing attention.
The primary target of this campaign is not crypto users but server and web app owners. The malware does not steal passwords or lock files; instead, it hijacks visitors' browsers to generate Monero, a privacy-focused cryptocurrency designed to make transactions more difficult to trace. The risk to crypto users is minimal, as the script does not drain wallets, although technically, a wallet drainer could be added to the payload.
This resurgence of cryptojacking highlights the evolving tactics of cybercriminals, who are increasingly focusing on long-term access and passive income. The campaign's ability to operate quietly and persistently poses a significant challenge to website owners and security professionals. As the threat landscape continues to evolve, it is crucial for organizations to remain vigilant and implement robust security measures to protect against such attacks.
Coin World
Quickly understand the history and background of various well-known coins
Latest Articles
XRP News Today: Vanguard Shifts Stance on Crypto ETFs, Citing Matured Markets and Demand
Dec.02 2025
Alphabet's AI Ecosystem Fuels Flywheel Growth, Propelling Stock 68% in 2025
Dec.02 2025
Striking Baristas Secure $38.9M in Restitution, But Contract Battles Brew On
Dec.02 2025
Bitcoin News Today: Bitcoin's RSI Signals Cyclical Reset as Market Waits for Fed's Decisive Move
Dec.02 2025
Corporate Strategies Test Balance Between Growth and Sustainability
Dec.02 2025
Ainvest News articles are AI-generated using advanced large language model (LLM) technology designed to analyze and synthesize publicly available data and news. While AI tools assist in producing initial drafts and insights, all AI generated content published on Ainvest is subject to comprehensive human editorial review before publication. A designated human editor reviews, verifies, and approves each article for factual accuracy, coherence, and compliance with AInvest Fintech Inc’s editorial and disclosure standards.
Despite these review procedures, the information provided may still contain inaccuracies, incomplete data, or time sensitive references due to the inherent limitations of AI generated analysis and evolving changes. The material is provided strictly for informational and educational purposes and does not constitute personalized investment, legal, or financial advice. Readers should independently verify all facts, figures, and statements before making any decision based on this content.
AInvest Fintech Inc. its affiliates, and partners accept no liability or responsibility for any direct or consequential losses arising from reliance on this content. All articles and analyses are subject to revision, update, or removal without prior notice to maintain accuracy and integrity in our publications.
Comments
No comments yet