BlackBerry has added a new feature to its endpoint detection and response (EDR) platform Optics: An Intel-powered cryptojacking malware detection system. The update to Optics specifically adds CPU telemetry from Intel Threat Detection Technology (TDT), a hardware-based security solution that Intel said is necessary because “software-only cyber solutions are no longer enough.”
BlackBerry claims its cryptojacking EDR has “virtually no processor impact” on Windows 10 systems that Optics runs on, allowing “organizations [to] detect and mitigate cryptojacking with greater precision and consistent results across all types of workloads.”
Cryptojacking is a form of malware that, once installed, quietly mines cryptocurrencies like Bitcoin using the resources of the infected machine. Cryptocurrency mining is resource intensive, so the more computing resources you have available the faster you can mine, thus the more cryptocurrency you can make.
Coin mining malware can slow down infected machines, increase electricity costs, and damage hardware, so while it may not be out to steal data it can still be just as damaging.
As mentioned above, the big feature to get excited about in the new BlackBerry Optics/Intel TDT partnership is its hardware-based security that operates below the OS to protect computers at the firmware level.
BlackBerry Optics is powered by machine learning that can adapt to evolving security situations, in BlackBerry’s words, “without human intervention.”
Despite claims that cryptojacking is losing its appeal, Kaspersky Labs told the Straits Times that cryptojacking attacks against countries in southeast Asia increased by 300% in the first three months of 2020.
It may not be making the news as much anymore, but cryptojacking is still just as dangerous as it was, and if your systems are vulnerable to that particular threat it’s likely they’re at risk for other malware that does more than just drive up electricity bills and overheat desktops.