more crypto-coin mining...

Discussion in 'Press Releases/Announcements' started by RickAgresta, Oct 1, 2017.

  1. RickAgresta

    RickAgresta Peanut, leader of the Peanutty Forces

    Messages:
    18,782
    Likes Received:
    10,398
    Trophy Points:
    288
    CBS's Showtime caught mining crypto-coins in viewers' web browsers
    Who placed the JavaScript code on two primetime dot-coms? So far, it's a mystery

    The websites of US telly giant CBS's Showtime contained JavaScript that secretly commandeered viewers' web browsers over the weekend to mine cryptocurrency.

    The flagship Showtime.com and its instant-access ShowtimeAnytime.com sibling silently pulled in code that caused browsers to blow spare processor time calculating new Monero coins – a privacy-focused alternative to the ever-popular Bitcoin. The hidden software typically consumed as much as 60 per cent of CPU capacity on computers visiting the sites.

    The scripts were written by Code Hive, a legit outfit that provides JavaScript to website owners: webmasters add the code to their pages so that they can earn slivers of cash from each visitor as an alternative to serving adverts to generate revenue. Over time, money mined by the Code-Hive-hosted scripts adds up and is transferred from Coin Hive to the site's administrators. One Monero coin, 1 XMR, is worth about $92 right now.

    However, it's extremely unlikely that a large corporation like CBS would smuggle such a piece of mining code onto its dot-coms – especially since it charges subscribers to watch the hit TV shows online – suggesting someone hacked the websites' source code to insert the mining JavaScript and make a quick buck.

    The JavaScript, which appeared on the sites at the start of the weekend and vanished by Monday, sits between HTML comment tags that appear to be an insert from web analytics biz New Relic. Again, it is unlikely that an analytics company would deliberately stash coin-mining scripts onto its customers' pages, so the code must have come from another source – or was injected by miscreants who had compromised Showtime's systems.

    Link to article: https://www.theregister.co.uk/2017/09/25/showtime_hit_with_coinmining_script/
     
  2. Hook

    Hook Phone Killer ;-) Arrrrr...f

    Messages:
    18,433
    Likes Received:
    6,883
    Trophy Points:
    288
    Anyone check the code on CBS AllAccess lately? :vbrolleyes:
     
  3. jigwashere

    jigwashere Life is a circus!

    Messages:
    15,969
    Likes Received:
    7,961
    Trophy Points:
    288
    Wait...do I still have to watch commercials?

    Sent from my Nexus 6 using Tapatalk
     
  4. scjjtt

    scjjtt A Former Palm User

    Messages:
    1,954
    Likes Received:
    2,992
    Trophy Points:
    288
    That's way beyond I computer understanding!

    I installed CBS All Access & watched Star Trek last week on my android tablet. It was a Google Play Store App & last night I cancelled the subscription via the Google Play Store.

    My question is - do I have something on my tablet or somehow transferred to my computers that use the same Chrome browser sign in as my tablet?

    Sent from my LG G4 using Tapatalk
     
    lelisa13p and jigwashere like this.
  5. headcronie

    headcronie Greyscale. Nuff Said. Super Moderator

    Messages:
    13,302
    Likes Received:
    1,737
    Trophy Points:
    113
    Chrome on Android does not use addons / extensions. At most, you'll have stored cookies transferred from Android to your computer. Nothing more.

    You should be okay.
     
  6. scjjtt

    scjjtt A Former Palm User

    Messages:
    1,954
    Likes Received:
    2,992
    Trophy Points:
    288
    Thanks, HC, that's a relief!

    Interesting note, before I went to Play Store to cancel the subscription, I did a Google search on how to cancel from CBS All Access. I did not go to any of the sites, but there was some links that sure looked sketchy...

    Sent from my Lenovo TAB 2 A10-70F using Tapatalk
     
    RickAgresta and lelisa13p like this.

Share This Page