fter a series of ransomware attacks capturing the headlines past year, crypto mining malware and crypto jacking attacks came into the play. Just last month, a Starbucks customer found that the infected Wi-Fi hotspot was trying to mine Monero digital coins. It was a new kind of threat associated with using public hotspots, which are often labeled unsafe and users are advised to use VPN services for extra privacy.
In a similar development, a security researcher named Arnau has published a proof-of-concept project that showcases how troublesome actors can exploit such public Wi-Fi networks and print free money.
As expected, the miner being used in the concept is from CoinHive. It’s a Monero miner that uses the CPU power to calculate hashes with Cryptonight PoW hash algorithm for mining.
The real-world demo of the attack using Kali Linux is shown below. The researcher has shared this attack for academic purposes and to showcase how easily one cybercriminal can exploit your weak security practices.