200+ #npm and #pypi packages caught dropping #Linux cryptominers.
> These packages are largely typosquats of widely used libraries and each one of them downloads a Bash script on Linux systems that run cryptominers.
> It appears that both registries cleared the typosquats fairly quickly from their platforms before these could do more harm to developers.
This appears to be a characteristic behavior of #monero / #xmr #cryptocurrency users. This is by no means the first wave of mining attacks against servers.
Most of those have public blockchains, so with some correlating work, a sufficiently resourced adversary could de-anonymize many users already.
I think the #Monero #cryptocurrency ( #XMR ) has a mandatory mixer that blends several transactions together in order to make it harder to map transactions to specific parties.
But Monero used to be the currency that people would try to mine in other people's browsers and servers, so I still feel like it is tainted by criminals.
#sonTwo tells me he has some #XRP, so he's going to try to change it to #Monero ( #XMR ). The thing with XMR is that was the currency that people were infecting other people's servers and even cellphones with miners to try and obtain. It tainted my view of Monero.
I still haven't found a cryptocurrency I feel comfortable with enough to buy, but XMR is definitely not likely to be the first.
The answer is none. Many #XMR miners attack someone else’s server or laptop, secretly install the software to mine #Monero, and reap all of the benefits without any of the costs.
#Monerujo is not just an #OpenSource wallet for the only private-by-default cryptocurrency out there, #XMR / #Monero, it's also a damn good payment app generally. My only complaint is that, because it doesn't rely on an external service to do the heavy lifting, it is a bit slow, especially over Tor.
It even integrates xmr.to to enable #Bitcoin payments, though one might not want to hold a large balance in XMR since it doesn't appreciate the way BTC does. No way to receive BTC yet, though.