Stories
Slash Boxes
Comments

SoylentNews is people

Half of the Websites Using WebAssembly Use it for Malicious Purposes

posted by martyb on Thursday January 09 2020, @08:02PM   Printer-friendly
from the noscript dept.

NPC-131072 writes:

From ZDNet:

Around half of the websites that use WebAssembly, a new web technology, use it for malicious purposes, according to academic research published last year.

WebAssembly is a low-level bytecode language that was created after a joint collaboration between all major browser vendors.

[...] However, while the vast majority of samples were used for legitimate purposes, two categories of Wasm code stood out as inherently malicious.

The first category was WebAssembly code used for cryptocurrency-mining. These types of Wasm modules were often found on hacked sites, part of so-called cryptojacking (drive-by mining) attacks.

The second category referred to WebAssembly code packed inside obfuscated Wasm modules that intentionally hid their content. These modules, the research team said, were found [as] part of malvertising campaigns.

Original Submission

 
This discussion has been archived. No new comments can be posted.
Half of the Websites Using WebAssembly Use it for Malicious Purposes | Log In/Create an Account | Top | 30 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 5, Informative) by janrinok on Friday January 10 2020, @12:29PM

    by janrinok (52) Subscriber Badge on Friday January 10 2020, @12:29PM (#941840) Journal

    I have js blocked on my computers - but you may have noticed that I spend quite a bit of time here. Javascript is most certainly not required.

    Starting Score:    1  point
    Moderation   +3  
       Informative=3, Total=3
    Extra 'Informative' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   5