Shasta QA Finding The Rise of Cryptocurrencies Coincides With The Rise of Cryptojacking
Are You A Victim of Cryptojacking Without Knowing It?
While some sites such as The Pirate Bay are knowingly running mining scripts in the background to raise funds and reduce the need for ad-based revenue, others have simply fallen victim to third party hackers who have found and taken advantage of a vulnerability. Either way, the discovery of such a script by an end user can be reputation damaging, especially if the user is not given a chance to opt-in. And don’t expect things to change anytime soon -- one report cited a “725% increase in the number of domains running scripts on one or more pages -- knowingly or not -- in the four-month period from last September to January 2018.”
So, how can you detect whether your site has been compromised? It’s likely easier than you may think. Certain add-ons for Firefox and extensions for Chrome, for example AdGuard or No Coin, can detect and block these types of cryptojacking scripts, and a QA team armed with these kinds of tools and a little due diligence can easily discover a cryptojacking script on your site before the public does, protecting your business and its reputation.
Mike Benton, QA Director at Shasta QA, said, “This is something that goes beyond traditional QA and is typically not going to be found by a regression test. But as business consultants, we’ve recognized the need to think outside the box and include non-traditional ways of finding problems and exploits.”