In this insight, in reviewing how a malvertising campaign is hijacking Facebook accounts to spread the SYS01stealer malware, we examine the tactics used, plus we look at the impact on businesses and steps organisations can take to protect themselves.

Exposed By Bitdefender 

Bucharest-based cybersecurity company Bitdefender has recently exposed a sophisticated malvertising campaign that leverages Facebook to distribute the SYS01stealer malware. The campaign targets Meta Business accounts with the goal of hijacking them and capturing sensitive user data. Bitdefender reports that this campaign uses deceptive Facebook ads that mimic well-known brands to drive users towards the malicious downloads. This campaign is notable because it highlights both the growing scale of malvertising threats and the advanced tactics now being used by cybercriminals.

What Is Malvertising? 

Malvertising, or “malicious advertising,” is a cyber tactic where attackers use online ads to redirect users to malicious websites or deceive them into downloading malware, often bypassing traditional security measures. These ads often appear on reputable sites and social media platforms, mimicking popular software, streaming services, or applications, making it difficult for users to distinguish between legitimate and malicious content. Once clicked, the ads lead users to sites that prompt a malware download. This approach is highly effective because the ads blend seamlessly with genuine content, allowing campaigns like the SYS01stealer to exploit trusted brands and reach a wide audience undetected.

The SYS01stealer Malware 

At the heart of this particular campaign is the SYS01stealer malware, which is a type of infostealer malware specifically engineered to harvest sensitive data from compromised devices. However, unlike more traditional infostealers, SYS01stealer’s primary focus is on accessing Meta Business accounts, especially those linked to Facebook, as it can use these accounts to propagate further malware. As a Bitdefender researcher explains, “The SYS01stealer malware has become a central weapon in this campaign, effectively targeting victims across multiple platforms,” illustrating its effectiveness in reaching a global audience.

What Does It Steal And Why? 

The malware aims to capture login credentials, browser cookies, browsing history, and other data stored on the compromised device. However, it is particularly focused on Facebook credentials, especially those for business accounts, which are highly valuable in the digital underground. For example, once the hackers gain access to a business account, they can use it to launch further malicious ads that spread the malware to an even larger audience. This tactic not only widens the scope of the attack but also enables cybercriminals to operate under the radar, as the malicious ads come from legitimate Facebook accounts, reducing the chance of detection by platform moderators.

Techniques and Methods Used in the Campaign 

The SYS01stealer malware is delivered through a malicious ElectronJS application embedded within a .zip archive. The ads direct users to a download link, typically hosted on a file-sharing service, where they can access what appears to be popular software, such as CapCut (a video editing app), Microsoft Office, or Netflix. When the user downloads and opens the file, an ‘Electron’ application is extracted, containing JavaScript code designed to deploy the malware covertly.

To maintain its deception, the malware runs a decoy application in the foreground that appears to function as expected, distracting the user from the background activity. However, behind the scenes, the Electron app executes PowerShell commands to install SYS01stealer and activate its infostealing functions. As Bitdefender notes on its website, “In many cases, the malware runs in the background while a decoy app—often mimicking the ad-promoted software—appears to function normally, making it difficult for the victim to realise they’ve been compromised.” 

Anti-Sandbox Measures 

To further evade detection, the malware employs anti-sandbox measures to avoid being analysed by cybersecurity tools (a sandbox safely isolates and tests suspicious software). For example, it checks the system’s GPU model against a list of well-known GPU models and, if it detects a sandboxed environment, the malware will not activate. This level of sophistication makes SYS01stealer especially dangerous, as it can remain hidden from security tools and analysts who rely on sandboxed environments to study and intercept malware.

Scope and Reach of the Malvertising Campaign 

Bitdefender’s research reveals that this campaign has “global” reach, with millions of potential victims across Europe, North America, Asia, and Australia. The campaign primarily targets men aged 45 and older, but its broad distribution means that any Facebook user could potentially encounter these malicious ads.

Uses Well-Known Brands 

In the ads used to draw victims in, the hackers impersonate widely recognised brands, including productivity tools, video editing software, VPNs, streaming platforms, and video games. According to Bitdefender, “The widespread impersonation increases the likelihood of drawing in a broad audience, making the campaign highly effective.”

Also Uses Malicious Domains

The campaign also relies on a network of nearly 100 malicious domains to host the malware and facilitate command-and-control (C2) operations. This infrastructure enables the attackers to manage the campaign in real-time, allowing them to update payloads, evade detection, and ensure the malware reaches as many devices as possible. With each compromised Facebook Business account, the hackers stand to gain a new vehicle for distributing additional ads, further amplifying the reach of the campaign without needing to create new accounts.

Dynamic 

In this particular campaign, it seems that the adaptability of the attackers, i.e. continuously updating their tactics, is playing an important role in helping them to circumvent detection. For example, when cybersecurity firms detect and block one version of the malware, the hackers modify the code, enhance obfuscation methods, and relaunch new ads with updated versions. This dynamic approach allows them to maintain a persistent presence on Facebook and other platforms, reaching new victims daily.

The Business Model Behind the Attack 

Bitdefender has highlighted how the success of the SYS01stealer campaign is driven by a structured cybercriminal business model that makes the operation self-sustaining. As mentioned earlier, the key objective of SYS01stealer is to acquire Facebook credentials, particularly those linked to business accounts.

By gaining access to Facebook’s advertising tools through compromised accounts, cybercriminals can create new, seemingly legitimate ads without arousing suspicion. These ads appear to be from real, verified business accounts, making it easier for the malware to bypass Facebook’s security filters. This tactic enables the attackers to expand their reach exponentially, reaching more victims with each wave of malicious ads. The hijacked accounts, therefore, are critical in scaling up the campaign, allowing each compromised account to be repurposed for promoting new ads without needing to create new accounts.

The Dark Web 

Aside from promoting additional malicious ads, the cybercriminals can also monetise stolen credentials by selling them on dark web marketplaces. Facebook Business accounts, in particular, hold high value due to their advertising potential, making them a prime target for hackers. For example, the stolen personal data, including login credentials, financial information, and security tokens, can be sold to other malicious actors who may use it for identity theft or other crimes. This creates a revenue stream for the attackers, with each new victim providing potential financial gain.

How Can You Protect Yourself and Your Business? 

Given the scope and sophistication of the SYS01stealer campaign, organisations should really adopt proactive measures to protect themselves and their users. Some key recommendations include:

– Scrutinise online ads. Users should be cautious about clicking on ads that offer free downloads or suspiciously enticing offers. Verifying the legitimacy of the source before interacting with ads is a good approach.

– Download software from official sources. It’s safest to always obtain software directly from the official website rather than through third-party platforms or file-sharing sites.

– Install and update security software. Having robust antivirus software that is up to date and capable of detecting evolving threats like SYS01stealer is essential (for both individuals and organisations).

– Enable two-factor authentication (2FA). Enabling 2FA, particularly on business accounts, provides an additional layer of security if credentials are compromised.

–  Monitor your Facebook business accounts. Regularly check business accounts for unauthorised activity. If any suspicious activity is detected, it should be reported to Facebook immediately, and login credentials should be updated.

Phishing Campaigns Misusing Eventbrite 

Similar tactics have been observed in phishing campaigns targeting popular ticketing platform Eventbrite. It appears that cybercriminals have been creating fake events to embed phishing links and distributing invitations through Eventbrite’s trusted domain to trick users into providing personal or financial information.

These attacks have reportedly exploited Eventbrite’s legitimate email system, sending phishing messages from its verified domain (noreply@events.eventbrite.com), making them appear credible and helping them bypass spam filters. In this campaign, hackers are reported to have been impersonating well-known brands such as DHL or EnergyAustralia, and setting up fake events designed to prompt immediate action, such as confirming delivery details or paying an outstanding bill. When victims have clicked the embedded links, they’ve been redirected to phishing sites that mimic legitimate platforms, tricking them into handing over sensitive details like login credentials and payment information.

This exploitation of a trusted platform like Eventbrite reflects a broader trend in cybercrime, where attackers use legitimate services to enhance the credibility of their schemes. Much like the SYS01stealer campaign, these phishing attacks demonstrate the need for increased vigilance and robust cybersecurity measures. Organisations and users alike may therefore be well advised to remain cautious of unsolicited communications, even when they appear to come from trusted sources.

What Does This Mean For Your Business? 

The SYS01stealer campaign highlights the growing risks in digital advertising and demonstrates the need for businesses across all sectors to strengthen their cybersecurity awareness and practices. This attack shows how sophisticated cybercriminals have become in exploiting familiar platforms like Facebook to distribute malware, and it signals the importance of a comprehensive security approach that extends beyond conventional defences.

For businesses, especially those using social media for marketing and engagement, this campaign emphasises the need for vigilance with social media accounts, particularly business accounts that might be targeted for hijacking. Any company using Facebook Business for ads or promotions should see this as a call to fortify account security through practices such as two-factor authentication and regular account monitoring. Given that cybercriminals are using these accounts to disguise malicious ads as legitimate, companies should also ensure that team members handling social media are aware of potential threats and know how to detect signs of unauthorised access or unusual activity.

Beyond internal protections, businesses also rely on platforms like Facebook to enforce stricter security protocols and help prevent misuse. Many believe that platforms like Facebook, Google, and LinkedIn, frequent targets for malvertising, should seriously consider refining their ad vetting processes and developing more advanced AI-based filters to detect suspicious ads before they reach users. By improving detection of malicious campaigns and monitoring account access patterns, these platforms could help prevent cybercriminals from using legitimate ads to lure unsuspecting victims.

For smaller businesses, which may have fewer resources for dedicated cybersecurity measures, these platform-level protections are especially critical. Facebook, for example, could offer enhanced ad review processes for business accounts and provide clearer tools for reporting suspicious ads or account activity. These efforts, coupled with ongoing cybersecurity education initiatives, would give businesses more support in protecting themselves and their customers.

Ultimately, the SYS01stealer campaign reminds businesses across sectors to treat cybersecurity as a core component of customer trust and operational resilience. By enhancing their defences, staying alert to new threats, and collaborating with the platforms they use, businesses can better navigate the growing risks of the digital landscape while safeguarding both their assets and their reputation. This broad approach should help create a safer ecosystem, benefiting organisations, platforms, and users alike.

Cryptocurrency Bitcoin’s value has surged past $80,000 for the first time, driven by market optimism following Donald Trump’s election victory and his promises to transform the United States into a global hub for cryptocurrency innovation.

Control of Congress 

Trump’s election as the next US president and his securing control of Congress, plus the Republican Party winning majorities in both the House of Representatives and the Senate, have boosted Bitcoin’s value to new heights (and still rising at the time of writing). This link between the cryptocurrency’s rising value and political events stems from Trump’s pro-cryptocurrency stance and his promises of deregulation.

Pre-Election Cautious Optimism By Investors 

In the lead-up to the election, because regulatory policies could profoundly impact the cryptocurrency market, investors were reported to be closely monitoring the candidates’ positions on digital assets with cautious optimism as the polls showed a Trump victory appeared likely. The market optimism was fuelled by factors such as Donald Trump, during his campaign, pledging to make the United States “the crypto capital of the planet” and proposing the creation of a strategic Bitcoin reserve. These commitments signalled a potential shift towards a more crypto-friendly regulatory environment, contrasting with what many saw as the previous administration’s stringent oversight.

Post-Election Surge 

Following Trump’s victory and the Republican Party’s consolidation of power in Congress, Bitcoin’s value has since skyrocketed. For example, on 10 November, Bitcoin surpassed $80,000, marking a record-breaking milestone in its history. However, this surge was not confined to Bitcoin. Other cryptocurrencies, including Dogecoin and Solana, also experienced substantial gains. Financial analysts have attributed this rally to the anticipation of favourable regulatory changes under the new administration, and some believe that if the Trump administration does deregulate crypto, Bitcoin prices could potentially reach as high as $100,000.

How Big Is The Jump In Value 

For those who may not be familiar with what the value of Bitcoin would normally be and how big the surge has been following the election, this time last year, for example, Bitcoin’s price was approximately $36,600.

Regulatory Overhaul Promises Have Driven Optimism 

It appears, therefore, that Donald Trump’s campaign promises to overhaul cryptocurrency regulations has sparked optimism among investors. For many, Trump’s plans to appoint pro-digital asset regulators and remove the current SEC Chair, Gary Gensler (widely seen as a stringent enforcer against crypto), has signalled a potential end to the sector’s regulatory crackdown, perhaps paving the way for innovation and growth within the industry. In a recent post on X, Coinbase CEO Brian Armstrong noted the perceived importance of these changes in terms of promising greater clarity and consistency in the regulatory environment, saying, “Americans disproportionately care about crypto and want clear rules of the road for digital assets”. 

Market Reactions 

Following the election result, cryptocurrency exchange-traded funds (ETFs) have seen significant inflows. For example, BlackRock’s Bitcoin ETF attracted over $2.4 billion in a week, bringing its total assets to more than $30 billion. This surge in institutional investment indicates growing confidence in the cryptocurrency market’s future under the new administration. Shares of crypto-related companies, such as Coinbase and mining firms like Riot Platforms and Marathon Digital, have also experienced substantial gains, reflecting broader market enthusiasm.

Potential Risks and Market Volatility 

However, despite all the optimism, the cryptocurrency market is known to be inherently volatile, and analysts have warned that while deregulation could spur growth, it might also lead to increased market speculation and potential instability. The rapid appreciation of Bitcoin’s value has raised concerns about possible corrections. For example, Matt Simpson, a senior market analyst at London-based financial services provider City Index, has advised investors to remain cautious and highlighted how Bitcoin “is still vulnerable to nasty selloffs along the way – which can be less kind to smaller pockets”. 

Environmental Considerations and Mining Implications 

The surge in Bitcoin’s value has also reignited discussions about the environmental impact of cryptocurrency mining. Bitcoin mining, the process of validating transactions and creating new bitcoins by solving complex mathematical problems using specialised computers, is energy-intensive, often relying on fossil fuels, leading to significant carbon emissions. As the industry anticipates expansion under a more supportive regulatory environment, addressing the environmental footprint of mining operations is therefore seen by many as increasingly critical. Some industry leaders have advocated for a transition to renewable energy sources to mitigate environmental concerns.

That said, Trump’s mantra of “drill, drill, drill” encapsulates his commitment to expanding domestic oil and gas production, and his appointment of Chris Wright, CEO of Liberty Energy, as Secretary of Energy, who has an extensive background in the fossil fuel industry, suggests that environmental concerns around crypto mining are likely to be given a low priority.

Liberty Financial? 

Interestingly, in the lead-up to the election, Donald Trump had been actively endorsing a new cryptocurrency initiative, World Liberty Financial, which could generate substantial fees for him. The platform, described as a decentralised finance venture, appears to have been focused around capitalising on the widespread recognition of the Trump brand. It has already secured $15 million through the sale of tokens, although it should be noted that these tokens provide no ownership rights and lack tradability.

Concerns have been expressed within the cryptocurrency sector, with some experts warning that this project could harm efforts to restore credibility in the industry. After years of scandals and major collapses, many fear that ventures like this could further erode public trust.

What Does This Mean for Your Business? 

Bitcoin’s surge past $80,000 and the broader cryptocurrency rally, driven by the political events in the US, signal a turning point for the sector, with significant implications for businesses, investors, and the future of digital assets. For those operating within the crypto industry, such as miners, exchanges, and blockchain developers, this rally provides fresh momentum and the prospect of growth under a more supportive US administration. Institutional investments, such as the billions flowing into Bitcoin ETFs, suggest growing confidence in the sector, potentially paving the way for wider adoption and innovation.

Businesses that use or accept cryptocurrencies may find this an opportune time to expand their payment options, as the increasing value and adoption of digital currencies could attract a broader customer base. However, the unpredictable nature of crypto prices remains a concern, requiring businesses to manage risks carefully, particularly in pricing strategies and transaction handling.

For investors, the soaring market presents a chance to capitalise on the potential upside of Bitcoin and other digital assets. However, with the market’s notorious volatility and the potential for selloffs, caution is essential. Diversifying investments and staying informed about regulatory and market trends is crucial.

The crypto market’s future, therefore, looks promising at this point in time, but not without complexities. Environmental concerns over energy-intensive mining and the risks associated with ventures like Trump-endorsed World Liberty Financial highlight the need for the sector to address public trust and sustainability. Businesses and investors alike must approach the evolving cryptocurrency space with a clear understanding of its potential benefits while remaining vigilant about its inherent challenges.

A recent report from Virgin Media O2 Business and the Centre for Economics and Business Research (Cebr) has revealed that if all UK businesses had embraced digital technology more extensively in 2021, the economy could have reaped a £111 billion boost in turnover.

The Untapped Potential of Digitalisation 

The report, titled ‘The Economic and Social Benefits of Digitalisation’, highlights what appears to be a major missed opportunity to drive productivity, job creation, and economic resilience through digital transformation, and a troubling gap between perception and reality among British firms. For example, according to the report, while 75 per cent of businesses surveyed believed they had a “strong digital culture,” the reality is far less impressive, i.e. the majority have not significantly increased their digital usage since 2021. This lag in digital adoption may, therefore, not only be costing businesses but also the UK economy as a whole.

The Importance of Not Simply Buying, But Integrating Workplace Technology 

As Bruce Daisley, a workplace culture expert, named as one of the world’s top 10 voices on the future of work by LinkedIn, said of the findings: “This isn’t just about buying tools—it’s about embedding them into everyday practices. Businesses have dazzling opportunities to maximise their tech, but many have been slow to implement permanent changes. Now is the moment.” 

The Digital Divide of Leaders vs. Laggards 

The Virgin Media O2 Business and Cebr research draws a clear line between digital leaders—firms actively investing in and utilising digital tools—and their slower-moving counterparts. The report highlights how companies with a robust digital culture saw turnover growth of 12 per cent compared to 5 per cent for less digitally mature businesses. Also, the report shows how productivity growth for digital leaders was more than double that of lagging firms, while Gross Value Added (GVA) rose by 8 per cent for digitally advanced organisations.

In stark contrast, businesses with weaker digital cultures reported no growth in these key metrics. The disparity is even more striking in workforce readiness, where 81 per cent of firms with strong digital cultures felt prepared for future challenges, compared to just 43 per cent of those lagging behind.

As Jo Bertram, Managing Director at Virgin Media O2 Business, states: “There’s a £111bn boost to the UK economy waiting to be unlocked by organisations that prioritise building strong digital cultures. Technology needs to underpin how people connect, collaborate, and drive outcomes.” 

Implications for Jobs and Growth 

Another important point highlighted by the report is how the benefits of digitalisation extend far beyond turnover and productivity. For example, the report estimates that greater adoption of digital technologies could have created 676,000 new jobs by 2023, with over 313,000 of these roles in SMEs. These figures demonstrate the transformative potential of digital tools to enhance not only individual businesses but also society at large.

As Nina Skero, CEO of Cebr (which conducted the research), noted: “Digital leadership is directly linked to higher turnover, increased productivity, and better performance across every economic metric. UK leaders must prioritise cultivating a strong digital culture to unlock their full potential and drive sustained growth.” 

The Challenges to Digital Progress 

Despite the clear benefits of having a strong, embedded digital culture for a business, significant barriers to digital transformation remain for many companies. For example, many organisations face a confidence gap, believing they are more digitally mature than they are in practice. Also, challenges such as limited budgets, resistance to change, and a lack of digital skills can hinder progress.

A separate report from the Federation of Small Businesses (FSB) supports these findings. According to their research, many SMEs cite affordability and complexity as the main obstacles to adopting digital technologies. This is particularly concerning given that SMEs form the backbone of the UK economy, accounting for 60 per cent of private sector employment and nearly 50 per cent of GDP.

What About ‘Digital Overload’ ? 

Not all experts agree on the relentless push for digitalisation. For example, a recent study by the University of Cambridge warns of the potential downsides of over-reliance on technology. The report argues that businesses must strike a balance, as excessive digitalisation can lead to inefficiencies, cybersecurity risks, and workforce burnout. While digital tools are essential, their success hinges on thoughtful implementation and employee buy-in.

This perspective highlights the need for a more nuanced approach where businesses invest not only in tools but also in training, culture, and cybersecurity to avoid pitfalls.

What Needs to Be Done? 

To unlock the full potential of digital transformation, UK businesses need to address key barriers. Ways in which they can do this include:

– Investing in skills development, such as providing employees with the necessary training to use digital tools effectively is critical.

– Prioritising culture over tools. It’s not just about acquiring technology but embedding it into organisational culture to drive meaningful change.

– Tailored solutions for SMEs. Policymakers and industry leaders need to develop targeted support for smaller businesses, such as grants, affordable tools, and simplified onboarding processes.

– Embracing collaboration. Larger firms and digital leaders can help by mentoring and partnering with SMEs to share best practices and accelerate adoption.

What Does This Mean for Your Business? 

For businesses across the UK, the findings of this report offer both a warning and an opportunity. The £111 billion in untapped economic growth highlights the critical importance of not just investing in digital tools but embedding them effectively within your organisation’s culture. This isn’t merely about staying competitive; it’s about future-proofing your business against a rapidly changing economic landscape.

The report also highlights how firms with strong digital cultures consistently outperform their peers in turnover, productivity, and workforce readiness. This means that if your organisation has yet to embrace digital tools or struggles to integrate them meaningfully, you risk falling behind not only in growth metrics but also in retaining a skilled and future-ready workforce. In an era where technology increasingly drives market dynamics, this is important!

At the same time, the barriers to digital transformation cannot be ignored. Challenges such as limited budgets, resistance to change, or a perceived lack of relevance are real, particularly for SMEs. However, overcoming these hurdles is crucial. Digitalisation is not just for large corporations, and SMEs stand to benefit significantly, with the potential to access new markets, streamline operations, and enhance customer engagement. Support is available, from government incentives to partnerships with larger firms, but it requires a proactive approach.

The debate about digital overload is also worth considering. A balanced approach can help avoid inefficiencies and employee burnout. Workforce training and a focus on creating a strong digital culture are key to ensuring technology adds value without becoming a burden.

All things considered, it seems that businesses essentially face a choice, i.e. to continue as they are and risk missing out on the growth opportunities digitalisation offers, or embrace the challenge of transformation and position themselves for a more resilient, prosperous future.

Apple is facing a £3 billion legal claim in the UK, accused of anti-competitive practices and overcharging iCloud customers.

Consumer group Which? has launched the class action on behalf of around 40 million UK iCloud users, alleging that Apple has effectively locked them into its service by restricting third-party alternatives, stifling competition, and inflating prices. The claim argues that Apple’s market dominance forces customers to rely on iCloud, with subscription costs ranging from £0.99 to £54.99 per month.

Apple denies the allegations, asserting that iCloud use is optional and that many customers choose third-party storage. It insists it facilitates data transfer and will robustly defend against claims of anti-competitive behaviour.

This lawsuit is part of a growing wave of class actions against major tech firms over similar issues. Other companies, including Google and Facebook, face comparable legal challenges, which could reshape competitive practices in the industry.

Legal experts have highlighted the potential for this and similar cases to disrupt dominant market positions and promote consumer-friendly reforms. Businesses may need to reassess practices to avoid limiting consumer choice or inviting regulatory scrutiny.

The outcome of this case could set a precedent, influencing how large tech firms structure services and compete, with implications for compliance and consumer trust.

Researchers at cybersecurity firm Barracuda have revealed that cybercriminals are now supercharging sextortion scams by using victims’ personal information, such as home addresses and Google Maps images, to make their threats more convincing and increase pressure to pay ransoms.

These scams, designed to extort money from victims, account for around 3 per cent of targeted phishing attacks and typically involve criminals falsely claiming to have explicit material hacked from victims’ devices. Personalised emails including names, phone numbers, and addresses are being used to make the threats appear more credible, and many emails begin with unsettling lines like, “Is this the right place to meet?” alongside images of victims’ homes or workplaces to coerce compliance.

Ransom demands are also reported to have risen sharply, often reaching $2,000, with scammers streamlining payments by including QR codes for Bitcoin transfers. While most attacks are large-scale spam campaigns, the personalised content in these scams enables them to evade spam filters and reach victims directly.

The impact on victims is reported to be severe, with scammers exploiting the distress caused by their invasive threats. However, in most cases, the attackers don’t actually have any of the explicit material they claim to possess, instead simply relying on data from previous breaches to construct their lies.

To combat these scams, businesses should employ advanced email protection systems, monitor for compromised accounts, and educate employees on identifying such attacks. Regular system updates and proactive email analysis are also effective ways to counter this growing cyber threat.

Researchers at the University of Limerick (UL) and the University of Valencia have developed a method to convert waste heat into electricity using lignin, a byproduct of the paper industry, offering a sustainable alternative to conventional energy recovery methods.

What Is Energy Recovery? 

Energy recovery (heat recovery in this case) is the process of capturing and reusing waste heat generated by industrial processes, machinery, or natural sources. Instead of allowing this energy to dissipate, heat recovery repurposes it to perform useful work, such as generating electricity or heating systems. By improving energy efficiency and reducing reliance on non-renewable resources, heat recovery offers real value in lowering operational costs and minimising environmental impact.

What Inspired the Research? 

Every day, industries, homes and even our bodies produce vast amounts of waste heat, with approximately 66 per cent of industrial energy output lost as heat, much of it below 200°C. Recognising this untapped potential, researchers at UL, supported by Irish Government funding and led by Muhammad Muddasar, PhD candidate at the School of Engineering, focused on developing a sustainable solution for harnessing this energy.

Traditional thermoelectric materials, such as bismuth telluride, have been used for heat-to-electricity conversion but are costly, toxic, and reliant on finite resources. Seeking a greener alternative, the researchers identified lignin \9a renewable, abundant byproduct of the paper industry) as an ideal, eco-friendly candidate for creating efficient thermoelectric materials.

The Thermoelectric Effect 

At the heart of this discovery lies the ‘thermoelectric effect’, where a temperature difference across a material generates an electrical potential. The UL and Valencia team engineered lignin-based membranes infused with a salt solution to exploit this phenomenon.

When a temperature gradient was applied to the lignin membrane, ions within the salt solution migrated i.e., positively charged ions moved towards the cooler side, while negatively charged ions gravitated towards the warmer side. This ion separation generated an electric potential across the membrane, which could be harnessed as electricity.

Lignin-Based Membranes Are Great at Converting Low-Grade Heat to Electricity 

The researchers developed membranes from lignin that can turn low-temperature heat (below 200°C) into electricity. This type of heat is commonly wasted in industrial settings, such as manufacturing plants and power stations, so these membranes could help capture and reuse it.

The study showed that lignin membranes performed well for this purpose, with a figure of merit (ZTi) of 0.25, measuring their ability to convert heat to electricity effectively. They also achieved an ionic Seebeck coefficient of 5.71 mV K⁻¹, demonstrating a strong electrical response from temperature differences.

The lignin-based membranes are lightweight, safe for biological environments, and eco-friendly, making them suitable for applications ranging from industrial energy recovery to sustainable energy solutions.

Practical Applications and Benefits 

The implications of this discovery could extend across industries and everyday scenarios. For instance, manufacturing facilities generate vast amounts of waste heat during production processes. Integrating lignin-based thermoelectric systems could allow these facilities to recover and reuse energy, reducing operational costs and environmental footprints.

Remote and off-grid locations could also benefit significantly. Lignin membranes could power sensors, communication devices, and small-scale lighting systems, eliminating the need for traditional fuel-based generators. Wearable technologies could also leverage the discovery, e.g. membranes could enable self-powered fitness trackers, medical monitors, and GPS devices that utilise body heat for continuous energy supply.

In buildings and infrastructure, lignin membranes could be integrated into heating, ventilation, and air conditioning (HVAC) systems to recapture waste heat and offset energy consumption. Their eco-friendly nature aligns perfectly with green building standards and sustainability goals.

A Green Alternative to Supercapacitors? 

Beyond energy harvesting, the UL team explored the use of lignin-based materials in energy storage. Traditional supercapacitors, which rapidly charge and discharge energy, often rely on carbon derived from fossil fuels. The researchers developed porous carbon electrodes from lignin, creating a sustainable alternative.

These lignin-based supercapacitors demonstrated exceptional performance in storing and delivering energy generated from waste heat. Their rapid charge-discharge capability makes them ideal for applications requiring quick bursts of power, such as electric vehicles and renewable energy systems.

Broader Context and Similar Research 

The study adds to a growing body of research exploring sustainable materials for energy generation. In recent years, cellulose-based membranes and ionic gels have gained attention for their thermoelectric properties. However, lignin offers the unique advantage of being a byproduct of an existing industrial process, requiring minimal additional processing, and making it highly cost-effective.

For example, a 2021 study by researchers at Chalmers University of Technology in Sweden highlighted the potential of cellulose membranes for thermoelectric applications. While these membranes demonstrated impressive performance, their mechanical fragility posed challenges for practical use. By contrast, the UL team’s lignin-based membranes are mechanically robust and suitable for real-world applications.

Environmental and Economic Impact 

Lignin-based thermoelectric materials offer clear environmental benefits. By converting waste heat into electricity, these membranes could reduce reliance on fossil fuels, lower greenhouse gas emissions, and enhance energy efficiency across sectors. Harnessing lignin can thus transform what was once industrial waste into a valuable resource, contributing to a circular economy.

Cost Savings 

Economically, lignin-based technology could drive significant cost savings. The pulp and paper industry produces an estimated 50 million tonnes of lignin annually, much of which is discarded or burned for low-value energy recovery. Redirecting this lignin towards high-value applications, such as thermoelectric energy harvesting, could represent a win-win for industries and the environment.

Key Challenges and Future Directions 

Despite its promise, the technology is not without challenges. Scaling up lignin membrane production while maintaining consistent quality will require further research. Also, optimising the membranes’ performance under varying environmental conditions (such as humidity and prolonged heat exposure) remains a focus area.

Looking Ahead 

The researchers envision extending lignin-based materials to other forms of energy harvesting, such as solar thermal systems. Enhancements in membrane design, such as incorporating nanoscale channels for improved ion transport, could further boost efficiency and broaden applications.

What Does This Mean for Your Organisation? 

The development of lignin-based membranes could represent an exciting leap forward in sustainable energy technology. By converting waste heat (a largely untapped resource) into electricity, this innovation addresses both energy inefficiency and industrial waste. It is a clear example of how a circular economy can transform byproducts like lignin from the paper industry into valuable resources, paving the way for more environmentally responsible and economically viable solutions.

The potential value to industries could be significant. For example, in manufacturing facilities and power plants, where vast amounts of low-grade heat are routinely wasted, integrating lignin-based thermoelectric systems could reduce operational costs and improve energy efficiency. These membranes offer a way to recover lost energy and transform it into an asset, potentially reshaping markets that rely heavily on energy-intensive processes. Similarly, the transportation sector, including electric vehicles, could benefit from this technology’s ability to power auxiliary systems using heat generated during operation, improving overall efficiency and sustainability.

For businesses, the membranes present multiple opportunities. Industries involved in energy-intensive processes could achieve cost savings and reduced emissions, aligning with growing regulatory and public demands for sustainable practices. Furthermore, the eco-friendly nature of lignin membranes may open new markets, as green building standards and sustainability certifications increasingly influence decisions in sectors such as construction, infrastructure, and electronics. Companies that adopt and invest in this technology early could gain a competitive advantage in these evolving markets.

The implications for off-grid and remote locations are equally compelling. Lignin membranes could power devices and systems in areas where traditional energy infrastructure is lacking or expensive e.g., communication systems and wearable technologies. This could reduce reliance on fossil fuels and support the global push for decentralised, renewable energy solutions.

Although challenges remain in scaling production and optimising performance, the potential economic and environmental benefits of lignin-based membranes are undeniable. By offering a cost-effective, sustainable alternative to conventional thermoelectric materials, this innovation could revolutionise energy recovery across industries and inspire a shift in how businesses approach waste, sustainability, and energy use.