Categories: CryptoNews

Two CBS Websites Contained Code to Mine Monero

It appears plenty of websites are experimenting with cryptocurrency mining scripts these days. Now that two sites operated by CBS’s Showtime video network have been identified as containing such scripts, it will be interesting to see how the public responds. Up until now, only niche sites had experimented with this concept, but Showtime is a different creature altogether. No one knows for sure how the code got onto these websites in the first place, though.

Showtime Website Mines Cryptocurrency

Over the past week and a half, there have been numerous stories involving websites which suddenly started using visitors’ computer resources to mine cryptocurrency. In nearly every case, the mining process involved Monero, the only anonymous cryptocurrency in the world today. Although one would need significant computing resources to mine even one XMR these days, running a script on a website can still be pretty lucrative overall.

It is a mystery as to why Showtime would embed such code on two of its websites, though. The JavaScript code was identified over the weekend, and no one knows for sure how it made its way onto the website to begin with. The code is the same as that found on Coinhive, and is quickly becoming one of the most-hated JavaScript code pieces in history right now.  What is even more peculiar is how CBS claims no one on their staff embedded the code into the website.

Indeed, CBS has no good reason to have done so whatsoever. While everyone who runs a website is always looking for new ways to increase overall revenue, hijacking computer resources is never the best option. Additionally, CBS has a reputation to uphold, and one that is certainly not worth damaging for a few XMR mined through a browser. This hints that someone else successfully embedded the code on Showtime.com and ShowtimeAnytime.com without the company’s knowledge, which could prove to be a major problem.

Related Post

Moreover, Showtime is a paid service, which makes it even more unlikely that the Coinhive code was embedded in-house. Given the popularity of this platform globally, however, it is not entirely surprising that some nefarious individuals may have targeted these video-on-demand portals to embed JavaScript code capable of mining cryptocurrency. If someone effectively hacked the backend of both platforms, CBS will need to perform some proper security checks, to say the least.

One question currently being explored is whether the code in question was inserted using HTML tags related to web analytics provider New Relic. There is no reason to think this provider would purposefully let companies integrate a cryptocurrency mining scipt on its pages, but it shows that the potential attack vectors go well beyond the affected websites themselves. So far, New Relic claims to have had nothing to do with the code itself. Regardless of who is responsible, this sets a very intriguing and dangerous precedent.

It is not unlikely we will see more of these incidents moving forward. Mining cryptocurrency using someone else’s browser is anything but harmless; that much is evident. While it may not be the best way to earn money, it is still an attack vector a lot of criminals will continue to explore for quite some time to come. The code doesn’t stand out on a website either, which means it can remain in place for some time until users report an issue to the site owner. 

JP Buntinx

JP Buntinx is a FinTech and Bitcoin enthusiast living in Belgium. His passion for finance and technology made him one of the world's leading freelance Bitcoin writers, and he aims to achieve the same level of respect in the FinTech sector.

Share
Published by
JP Buntinx

Recent Posts

Best Altcoins to Invest in Today: Qubetics Sets the Stage for Blockchain’s Future as Bitcoin Hits $108K and Litecoin Soars

The cryptocurrency world has always been a hotbed of innovation, attracting both seasoned investors and…

9 hours ago

Dogecoin Millionaire Predicts This Undervalued Altcoin Could Match DOGE’s 2021 Gains

Dogecoin's 2021 rally was a historic one, turning ordinary investors into overnight millionaires. This magnificent…

10 hours ago

Qubetics Presale Skyrockets to $7.5M as XRP and Arbitrum Lead Best Altcoins for Exponential Returns

The crypto market is always evolving, with big names like Bitcoin and Ethereum leading the…

10 hours ago

Over 300K Users Actively Mine Crypto On BlockDAG’s X1 Miner App While BNB Bulls Eye $3K; What’s XRP’s Price Target?

The crypto market is ablaze with excitement as altcoins like XRP and BNB make major…

11 hours ago

Best Crypto Presale To Buy Now: Rollblock Delivers For Holders With New License, Record Sign Ups and 7000+ Games

Rollblock is quickly becoming the best crypto presale to buy, delivering unmatched value for its…

14 hours ago

Polkadot And Uniswap Gearing For Post-Christmas Jump As Rollblock Raises $7.4 Million in Presale

While Rollblock's continues its crypto presale, with its value increasing regularly, Polkadot (DOT) and Uniswap…

15 hours ago