A cryptocurrency mining virus infiltrates the logged in Facebook Messenger accounts running on the Google Chrome Browser and spreads the virus across several countries.
A malware named “Digmine” is turning the Facebook users’ computers into a cryptocurrency miner via the logged in Facebook Messenger when running on a Google Chrome browser, warned the Tokyo based cyber-security firm, Trend Micro experts. The cryptocurrency mining virus infiltrates the users’ Facebook Messenger, use the computer’s energy to generate new coins and initiates transactions.
“The increasing popularity of cryptocurrency mining is drawing the attackers back to the mining botnet business,” a Trend Micro representative said.
According to the researchers, the cryptocurrency mining virus affected the Facebook Messenger app to a limited propagation for the moment, and Facebook is maintaining several automated operations to prevent the system from carrying out such harmful links and files.
How Crypto Mining Malware Works?
The cryptocurrency mining malware, Digmine affects the Facebook Messenger app running on the Google Chrome browser. The cryptocurrency mining bot influences the Facebook Messenger app to send a harmful video link named video-xxxx.zip. As soon as the user clicks the link, the Facebook messenger virus downloads its configuration files and components in user’s computer using the remote command-and-control (C&C) server. Once all the required files are downloaded, the Digmine malware installs its cryptocurrency miner called miner.exe, which performs the task of mining the Monero cryptocurrency for the hackers via using the CPU power of the victims’ computers.
What Are the Tasks Cryptocurrency Mining Virus Can Perform?
Other than generating new coins and initiating the digital transactions, the cryptocurrency mining bot can install a registry auto-start mechanism and system markers as well. The crypto mining malware can also install malicious Chrome Extensions and relaunch the Google Chrome browser to ensure the extension is installed properly. The Digmine virus also captures users Facebook contact list and spread the harmful links to as many users as possible. The virus stays in the victims’ computers and can load other cybercriminal activities as well.
Who Might Get Affected by Crypto Mining Malware?
The cryptocurrency mining malware primarily affects only those Facebook Messenger users who are running the app on the Google Chrome desktop version.
Crypto Mining Malware Affected Counties
| S. No | Country |
| 1 | South Korea |
| 2 | Vietnam |
| 3 | Azerbaijan |
| 4 | Ukraine |
| 5 | The Philippines |
| 6 | Thailand |
| 7 | Venezuela |
How to Prevent Cryptocurrency Mining Bot?
Since the crypto mining malware is affecting the desktop version of the Facebook Messenger running on the Google Chrome platform, opening the zip file on any other platform cuts the possibilities of threats creating by the Digmine malware.
Assistance Provided to the Affected Computers
As per the Facebook officials, any computer found affected by the Facebook Messenger Virus will be provided with a free anti-virus scan from Facebook’s trusted partners. The Facebook bureaucrats also ensured that users get some tips to stay safe from the cryptocurrency mining virus and shared the information related to digmine malware at facebook.com/help.
Quite a useful post, I learned some new points here. Thanks for sharing, please keep posting updates regularly to enlighten our knowledge.