The US Federal Trade Commission (FTC) is now open to taking complaints from US users about cryptojacking —the practice of using JavaScript code to mine cryptocurrencies inside users’ browsers without notifying them in advance or requesting permission.

While cryptocurrency mining has been a thing for years and is the primary and only method through which new cryptocurrencies are generated, mining was usually done via special hardware rigs or custom software installed on users’ computers.

Generating cryptocurrency via these two methods has been usually pretty hard, especially for malware authors, as it required tricking users into install malware or hacking countless of servers across the web.

Things changed last fall with Coinhive

But things radically changed last fall when a German company launched a web service named Coinhive that lets any website owner add a JavaScript library to their site and generate cryptocurrency by using the CPU power of site visitors, instead of the site owner’s own hardware resources.

Due to its easy implementation model —requiring only the loading of a JavaScript library— Coinhive usage exploded last September, with the Coinhive library becoming a favorite tool among malware developers, and countless of copycat services popping up all over the Internet, trying to capitalize on the cryptojacking craze.

In-browser mining scripts have become today’s hottest malware trend, and any crook looking for a quick profit is either…