Eset, a software security firm from Slovakia has discovered that the Stantinko botnet cybercriminals have been distributing a Monero (XMR) cryptocurrency mining module by using Youtube.
The major antivirus software security firm Eset reported on November 26 that the operators of Stantinko botnet have widened their criminal reach from click fraud, ad injection, social network fraud, and password hacking attacks, into installing crypto malware on users’ devices via Youtube.
Since 2012, Stantinko botnet has been active and mostly targets users from different countries in Europe like Russia, Ukraine, Belarus, and Kazakhstan. It is reportedly said that the group uses Youtube channels to distribute its modules for cryptojacking which digs in the cryptocoin Monero’s privacy on the CPU’s of its victims.
This crypto-stealing malware was said to already infect around 500,000 devices. These crypto-hijacking codes steal processing resources, take over and disguise just to be able to run a miner on the infected devices.
As a counteracting measure, Eset informed Youtube, which then responded by removing all channels that were infected by the Stantinko’s code.