An app on Google Play was discovered stealing cryptocurrency from users, employing advanced social engineering and trusted protocols. Check Point Research exposed the app after it had siphoned $70,000, deceiving over 150 victims. The attackers used the Walletconnect protocol to appear legitimate, manipulating Google search rankings and avoiding detection through encryption and obfuscation techniques. Malicious…
Read more
German authorities have dismantled 47 exchange services involved in facilitating anonymous crypto transactions for criminal activities. These platforms bypassed anti-money laundering protocols, enabling cybercriminals to exchange digital currencies without identity verification. The takedown follows a series of other operations targeting major cybercrime networks. With seized user and transaction data, authorities are set to pursue further…
Read more
The FBI has issued a new warning about North Korea’s cyber campaigns targeting the cryptocurrency sector. The agency highlighted the use of sophisticated, hard-to-detect social engineering tactics to deploy malware and steal digital assets. North Korean hackers are reportedly focusing on decentralized finance (defi) platforms and cryptocurrency exchange-traded funds (ETFs). FBI Warns of North Korean…
Read more
Check Point Research (CPR) has uncovered Styx Stealer, a new malware capable of stealing browser data, cryptocurrency, and instant messenger sessions. Styx Stealer is a variant of Phemedrone Stealer and includes new features like auto-start and crypto-clipping. The malware was traced back to a developer linked to the Agent Tesla threat actor “Fucosreal.” During debugging,…
Read more
Kaspersky, the cybersecurity firm based in Russia, has issued a public warning regarding a new malware strain that particularly targets Mac users, focusing on their crypto wallets. This malicious software, which infiltrates computers via counterfeit applications, sets up a backdoor aimed at bitcoin wallets, including Exodus. It then substitutes these wallets with fraudulent versions designed…
Read more
A recent report from Scam Sniffer, an anti-scam solution, revealed that MS Wallet Drainer, a cryptocurrency malware tool, has managed to siphon over $58 million in crypto since March. The drainer uses Google search and X ads phishing links as a distribution vector and has affected over 63,000 victims as of December 21.
MS…
Read more
Source: AdobeStock / Sergey Nivens The state-sponsored North Korean hacker group Lazarus Group used a new type of malware called “Kandykorn” to target a cryptocurrency exchange. On October 31, Elastic Security Labs reported that the notorious Lazarus Group used a new type of malicious software (malware) called “Kandykorn” in an attempt to compromise a cryptocurrency…
Read more
Threat actors have worked out a way to hide malicious payloads in Binance smart contracts to lure victims into updating their browsers from fake prompts, according to cybersecurity researchers. Cybercriminals have discovered a new way to spread malware to unsuspecting users, this time by manipulating BNB Smart Chain (BSC) smart contracts to hide malware and…
Read more
The malware payload “LightlessCan” — used in fake job scams — is far more challenging to detect than its predecessor, warns cybersecurity researchers at ESET. North Korean hacking collective Lazarus Group has been using a new type of “sophisticated” malware as part of its fake employment scams — which researchers warn is far more challenging…
Read more
Get your daily, bite-sized digest of cryptoasset and blockchain-related news – investigating the stories flying under the radar of today’s crypto news.__________… Read More: Today in Crypto: 5-Country Joint Advisory Report Warns About Russian Malware Targeting Crypto Users, IBM Shares 5 Points for Success of Digital Euro Read more »Sign up for e-EUR – the…
Read more
