Here’s one good reason why you should never use pirated software

New cross-platform cryptocurrency miner comes bundled with pirated software

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Researchers from the IT security firmESEThave discovered a new cross-platformcryptocurrency minercalled LoudMiner that comes bundled alongside pirated software.

Through the use ofvirtualization software, Quick Emulator (QEMU) on macOS andVirtualBoxon Windows, LoudMiner is able to mine cryptocurrency on a Tiny Core Linux virtual machine.

Users' devices can become infected with the cryptocurrency miner by downloading pirated copies of a type of audio software plugin interface called Virtual Studio Technology (VST). Once infected, LoudMiner then uses the compromised machines to mine cryptocurrency and the miner even has the ability to self-update through the use of Secure File Copy (SCP) with an embedded username and private SSH key.

LoudMiner

LoudMiner

Senior malware researcher at ESET, Marc-Etienne M. Léveillé explained why LoudMiner targets systems runningaudio software, saying:

“LoudMiner targets audio applications, given the machines running these applications often have a higher processing power. These applications are typically complex and have a high CPU consumption, so users will not find this activity unusual. Using virtual machines instead of another leaner solution is quite remarkable, and is not something we have typically seen before.”

ESET has observed that LoudMiner has been in use since August 2018 and the firm recommends that users avoid downloading pirated copies of commercial software to protect themselves.

ESET also recommends that users should beware of popups from unexpected “additional” installers, higher CPU consumption, as well as new services and connections from curious domain names.

Are you a pro? Subscribe to our newsletter

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

For more details on LoudMiner, you can read ESET’sLoudMiner: Cross-platform mining in cracked VST softwarereport.

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.

This new phishing strategy utilizes GitHub comments to distribute malware

Should your VPN always be on?

NYT Strands today — hints, answers and spangram for Sunday, November 10 (game #252)