Cryptojacking is a type of cyberattack where hackers secretly use a victim’s computer, smartphone, or server to mine cryptocurrency without permission. Instead of stealing data or locking files like traditional malware, cryptojacking focuses on exploiting system resources—mainly CPU and GPU power—to perform complex calculations required for mining. The attacker gains financial profit from the mined cryptocurrency, while the victim suffers slower performance, increased electricity usage, and potential hardware damage.

Cryptojacking can occur through malicious scripts embedded in websites, infected software downloads, or compromised browser extensions. When a user visits an infected site or installs the software, the mining code runs quietly in the background, often without any noticeable signs beyond reduced speed or overheating devices.

Unlike ransomware, which demands payment from victims, or spyware, which collects sensitive information, cryptojacking’s goal is continuous, undetected resource theft. This stealthy nature makes it particularly difficult to identify, as there is no direct interaction or visible ransom demand.

The main difference between cryptojacking and other forms of malware lies in its intent and impact. It doesn’t aim to destroy or steal data but to generate profit by hijacking computing power. However, its cumulative effects, system wear, network congestion, and wasted energy can still cause serious operational and financial harm, especially for organisations with large-scale networks.