A new virus steals cryptocurrency from users' wallets

in #bitcoin7 years ago

Hackers have previously developed a special program designed to infect users' devices and steal their cryptocurrencies: Ethereum, Bitcoin, Litecoin. A new version of this program already infects gadgets of users working on macOS. The spread of a malicious program occurs through the application of a zero day of browsers (this expression denotes not an unresolved vulnerability but malicious applications from which there are no protective programs yet).

Img. source: www.freepik.com

An improved version of CoinThief is able to infect Mac gadgets with a zero-day JavaScript-related vulnerability in browsers such as Webkit-Chrome, Gecko-Mozilla, Opera, and Safari without customer interaction.

For the first time CoinThief for macOS developers found the antivirus software for SecureMac in February 2014. At that time, this software was distributed through Github, as well as through browsers while downloading information (for example, Download.com, MacUpdate.com).

In November 2017 a new version of the virus was discovered on the symantecblog.com, which is able to monitor the client's clipboard, to identify the user's PC as the target, when the cryptocurrency address is copied regardless of its type.

The company immediately began to check various types of purses, including those which used to save Litecoin, Monero, Ethereum, Namecoin, DASH, and Bitcoin. They found that CoinThief is heavily embedded in the system through qualitatively developed mechanisms and is able to control the wallets with coins equivalent more than $1 000. 

The developers of the malicious program were able to steal 214 ETH, 145 BTC, and 21 LTC. The main targets of this software are: representatives of cryptocurrency communities and traders, but the most experts recommend testing for viruses all gadgets and PC on Mac.

It was found that the malicious program use a complex technique called “dylib hijacking”, which is able to embed the virus program in pre-installed applications such as iTunes.


 
Sort:  

This post received a 4% upvote from @morwhale team thanks to @russianbitcoin! For more information, click here! , TeamMorocco! .

This is really bad if this is a true ... thank you for sharing that information ! I upvoted and followed you .

Yes! It's a pitty... Thank's, I also upvoted and followed you))

The @OriginalWorks bot has determined this post by @russianbitcoin to be original material and upvoted(1.5%) it!

ezgif.com-resize.gif

To call @OriginalWorks, simply reply to any post with @originalworks or !originalworks in your message!

This post has received a 0.63 % upvote from @drotto thanks to: @russianbitcoin.

Congratulations! This post has been upvoted from the communal account, @minnowsupport, by RussianBitcoin from the Minnow Support Project. It's a witness project run by aggroed, ausbitbank, teamsteem, theprophet0, someguy123, neoxian, followbtcnews/crimsonclad, and netuoso. The goal is to help Steemit grow by supporting Minnows and creating a social network. Please find us in the Peace, Abundance, and Liberty Network (PALnet) Discord Channel. It's a completely public and open space to all members of the Steemit community who voluntarily choose to be there.

Congratulations @russianbitcoin! You have completed some achievement on Steemit and have been rewarded with new badge(s) :

Award for the number of upvotes
Award for the number of upvotes received

Click on any badge to view your own Board of Honor on SteemitBoard.
For more information about SteemitBoard, click here

If you no longer want to receive notifications, reply to this comment with the word STOP

By upvoting this notification, you can help all Steemit users. Learn how here!