Research: Three Criminal Apps You Need To Keep Your Crypto Away From

Spread the love

Three crypto-based software hid a nasty surprise for those who downloaded them.

Cyber Security analysts also uncovered a year-long ransomware operation that has threatened cryptocurrency consumers by producing a variety of fake applications.

Security company Intezer Laboratories warned that ever-increasing crypto rates have resulted in escalated interaction between hackers and malicious players targeting financial benefits. The malware has been distributed during the last year, but was only found in December 2020.

The new remote access Trojan (RAT), called ElectroRAT, was used to clear the cryptocurrency wallets of thousands of Windows, MacOS, and Linux users, the report added.

Three cryptocurrency-related attacks applications—Jamm, eTrade/Kintum, and DaoPoker—were all hosted to their own websites. The first two are fraudulent crypto trading applications, while the third one is gambling focused.

The ElectroRAT malware concealed within these applications is highly invasive according to the researchers;

“It has various capabilities such as keylogging, taking screenshots, uploading files from disk, downloading files, and executing commands on the victim’s console.”

After being downloaded on the victim’s computer, the applications display a front-end user interface intended to distract focus from malicious background operations. Apps were supported using Twitter and Telegram social networking channels in addition to cryptocurrency-based sites such as Bitcointalk.

RECOMMENDED READ:  XLM returns to 10 most valuable coins by market cap after rising almost 30%.

Intezer Laboratories reported that the campaign had already infected “thousands of victims” who had their crypto wallets drained. It added that there was evidence that certain victims who had been infected by the apps were using common crypto wallets, such as MetaMask.

The malware was written in a multi-platform programming language named Golang, which makes it more difficult to find. The security firm claimed that it was rare to see a RAT designed to steal personal information from cryptocurrency users that was written from scratch, adding;

“It is even rarer to see such a wide-ranging and targeted campaign that includes various components such as fake apps and websites, and marketing/promotional efforts via relevant forums and social media.”

There have been a number of occasions in 2020 where bogus versions of legal applications and browser plugins, such as MetaMask or Ledger, have found their way to victim devices. This may be linked to a major data leak by Ledger in mid-December.

RECOMMENDED READ:  These two altcoins have surged 400 and 500 percent in Q2 2020; here’s why

In September 2020, Coinbase users were among the victims of new Android-based malware spread via the Google Play Store.

 226 Interactions,  6 today

Blockchain technology will close the gap between DApps and enterprises.

It is important that conventional companies join the decentralised ecosystem in order to improve the industry's security and credibility. Blockchain Read more

US charges three North Korean hackers for crypto attacks and WannaCry ransomware

The Department of Justice prosecuted three hackers associated with the notorious Lazarus Group. On Wednesday, the United States Department of Read more

Popular Youtube influencer, with 13.6 million subscribers claims he was paid to promote Tron

Marques Brownlee, a prominent Youtube influencer, told his 13.6 million subscribers that representatives allegedly offered him a deal to help Read more

UK-based Exmo exchange suffered DDoS attack

UK-based crypto exchange Exmo suffered a distributed denial-of-service (DDoS) attack. Exmo team said on Twitter that the exchange’s servers were Read more

RECOMMENDED READ:  Bitcoin maximalists blast Ethereum’s Vitalik Buterin after he cautioned against buying crypto with personal loans
  • 1

Leave a Reply

Your email address will not be published. Required fields are marked *

Contact Us