Security Affairs

SEPTEMBER 14, 2023

Researchers discovered a free download manager site that has been compromised to serve Linux malware to users for more than three years. Researchers from Kaspersky discovered a free download manager site that has been compromised to serve Linux malware. org subdomain. org subdomain. ” reported Kasperksy. freedownloadmanager[.]org

Malware 111

Malware Software Cryptocurrency Passwords 111

CyberSecurity Insiders

NOVEMBER 26, 2021

Google, the business subsidiary of tech giant Alphabet Inc, has released a report saying that the compromised cloud accounts were leading hackers to mine cryptocurrency that could prove as a double threat to customers. The post Compromised cloud accounts leading to Cryptocurrency mining appeared first on Cybersecurity Insiders.

Cryptocurrency 131

Cryptocurrency Accountability Passwords Software 131

Krebs on Security

FEBRUARY 28, 2024

Malicious hackers are targeting people in the cryptocurrency space in attacks that start with a link added to the target’s calendar at Calendly , a popular application for scheduling appointments and meetings. The attackers impersonate established cryptocurrency investors and ask to schedule a video conference call.

Malware 277

Malware Cryptocurrency Software Scams 277

Security Affairs

JULY 19, 2022

FBI has warned of crooks developing malicious cryptocurrency-themed apps to steal crypto assets from the users. Federal Bureau of Investigation (FBI) has warned of crooks creating malicious cryptocurrency-themed apps to steal crypto assets from investors. million from 244 victims between October 4, 2021, and May 13, 2022. million. .”

Cryptocurrency 97

Cryptocurrency Mobile Hacking Accountability 97

Malwarebytes

JULY 19, 2022

Together with the Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA), the FBI has released a warning about cybercriminals creating fraudulent cryptocurrency investment apps in order to defraud cryptocurrency investors. Mitigation. Stay safe, everyone!

Cryptocurrency 86

Cryptocurrency Mobile Banking Internet 86

SecureWorld News

APRIL 21, 2022

Treasury Department warning of a North Korean state-sponsored advanced persistent threat (APT) known as the Lazarus Group targeting cryptocurrency and blockchain companies. The threat actors use social engineering to encourage individuals to download trojanized cryptocurrency applications on Windows or macOS operating systems.

Cryptocurrency 75

Cryptocurrency Computers and Electronics Social Engineering System Administration 75

The Hacker News

FEBRUARY 23, 2023

Trojanized versions of legitimate applications are being used to deploy evasive cryptocurrency mining malware on macOS systems. to download Jamf Threat Labs, which made the discovery, said the XMRig coin miner was executed as Final Cut Pro, a video editing software from Apple, which contained an unauthorized modification.

Cryptocurrency 95

Cryptocurrency Malware Internet Internet 95

Security Affairs

FEBRUARY 24, 2023

Trojanized versions of legitimate applications are being used to deploy XMRig cryptocurrency miner on macOS systems. The malicious code uses i2p to download malicious components and send mined currency to the attacker’s wallet. ” reads the analysis published by the experts. ” concludes the report.

Cryptocurrency 86

Cryptocurrency Malware Software Passwords 86

The Last Watchdog

SEPTEMBER 6, 2023

Over time, Bitcoin has become the most widely used cryptocurrency in the world. Refrain from installing illegal or dubious software, and only download wallets from reliable sources. Use caution while downloading files or clicking on websites connected to your Bitcoin wallet. Ashford Be wary of fraud.

Cryptocurrency 100

Cryptocurrency Backups Passwords Software 100

The Hacker News

JULY 18, 2022

Federal Bureau of Investigation (FBI) has warned of cyber criminals building rogue cryptocurrency-themed apps to defraud investors in the virtual assets space. investors, fraudulently claiming to offer legitimate cryptocurrency investment services, and convincing investors to download fraudulent mobile apps, which the cyber criminals

Cryptocurrency 87

Cryptocurrency Mobile 87

SecureList

JUNE 5, 2023

Satacom downloader, also known as LegionLoader, is a renowned malware family that emerged in 2019. In this report we cover a recent malware distribution campaign related to the Satacom downloader. In this case, even legitimate websites may have a malicious “Download” link displayed on the webpage.

Cryptocurrency 82

Cryptocurrency DNS Malware Encryption 82

Security Affairs

SEPTEMBER 22, 2022

The gap is being abused for malicious cryptocurrency mining.” ” In one of the attacks spotted by the experts, threat actors exploited the flaw to inject an OGNL expression and download and run a shell script (“ro.sh”) on the victim’s machine. .” in the collaboration tool Atlassian Confluence.

Cryptocurrency 105

Cryptocurrency Firewall Malware Hacking 105

Security Affairs

FEBRUARY 13, 2023

Alleged Russian threat actors have been targeting cryptocurrency users in Eastern Europe with Enigma info-stealing malware. The files pose an interview for a fake cryptocurrency role or job opening. Once executed, the Enigma loader begins the registration and downloading of the second-stage payload.”

Cryptocurrency 76

Cryptocurrency Malware Media Phishing 76

Heimadal Security

JANUARY 18, 2023

Crypto Influencer Stripped of NFTs At least one well-known cryptocurrency user claims to have been […]. The post Malicious Download Links Impersonating Popular Software Pushed by Hackers Through Google Ads appeared first on Heimdal Security Blog.

Software 82

Software Cryptocurrency Cybersecurity 82

The Hacker News

JULY 11, 2022

GitHub Actions and Azure virtual machines (VMs) are being leveraged for cloud-based cryptocurrency mining, indicating sustained attempts on the part of malicious actors to target cloud resources for illicit purposes.

Cryptocurrency 84

Cryptocurrency 84

Security Affairs

NOVEMBER 1, 2021

Operators behind the Squid Game cryptocurrency have exit scam making off with an estimated $2.1 Operators behind the Squid Game cryptocurrency have exit scam making off with an estimated $2.1 The following graph shows that the cryptocurrency peaked at a price of $2,861 before dropping to $0 around. ” reported GixModo.

Cryptocurrency 111

Cryptocurrency Scams Cybercrime Advertising 111

Security Affairs

MAY 28, 2023

Bandit Stealer is a new stealthy information stealer malware that targets numerous web browsers and cryptocurrency wallets. Trend Micro researchers discovered a new info-stealing malware, dubbed Bandit Stealer, which is written in the Go language and targets multiple browsers and cryptocurrency wallets.

Cryptocurrency 91

Cryptocurrency Malware Advertising Phishing 91

Schneier on Security

MARCH 21, 2018

Interesting paper " A first look at browser-based cryptojacking ": Abstract : In this paper, we examine the recent trend towards in-browser mining of cryptocurrencies; in particular, the mining of Monero through Coinhive and similar code-bases.

Cryptocurrency 131

Cryptocurrency Advertising Marketing 131

Security Affairs

DECEMBER 4, 2022

The North Korea-linked Lazarus APT spreads fake cryptocurrency apps under the fake brand BloxHolder to install the AppleJeus malware. Volexity researchers warn of a new malware campaign conducted by the North Korea-linked Lazarus APT against cryptocurrency users. In this campaign, the threat actors used the “bloxholder[.]com”

Cryptocurrency 85

Cryptocurrency Malware Hacking Information Security 85

Security Affairs

MARCH 30, 2021

Palo Alto Network researcher Aviv Sasson discovered 30 malicious Docker images, which were downloaded 20 million times, that were involved in cryptojacking operations. The expert determined the number of cryptocurrencies that were mined to a mining pool account by inspecting the mining pool. Pierluigi Paganini.

Cryptocurrency 100

Cryptocurrency Accountability Architecture Software 100

Security Affairs

JULY 12, 2022

Researchers investigated cloud-based cryptocurrency mining attacks targeting GitHub Actions and Azure VMs. Researchers from Trend Micro published a report that details cloud-based cryptocurrency mining attacks targeting GitHub Actions and Azure VMs and the threat actors behind them. ” states the report published by Trend Micro.

Cryptocurrency 104

Cryptocurrency IoT Software Malware 104

Hot for Security

JANUARY 25, 2021

Another day, and another report that a cryptocurrency exchange has been breached by malicious hackers. Indian cryptocurrency exchange BuyUCoin says that is investigating claims that sensitive data related to hundreds of thousands of its users has been published on the dark web, where it is available for free download.

Cryptocurrency 111

Cryptocurrency Risk Data breaches 111

Heimadal Security

APRIL 26, 2021

Cybersecurity analyst Oliver Hough recently discovered that hackers have created a fake DirectX 12 download site to distribute malware that steals your cryptocurrency wallets and passwords. The post Fake DirectX12 Download Website Installs Crypto-Stealing Malware appeared first on Heimdal Security Blog.

Malware 74

Malware Cryptocurrency Passwords Cybersecurity 74

The Hacker News

NOVEMBER 29, 2021

Threat actors are exploiting improperly-secured Google Cloud Platform (GCP) instances to download cryptocurrency mining software to the compromised systems as well as abusing its infrastructure to install ransomware, stage phishing campaigns, and even generate traffic to YouTube videos for view count manipulation.

Cryptocurrency 99

Cryptocurrency Accountability Phishing Ransomware 99

Malwarebytes

MAY 11, 2022

The sites vary in terms of style or general setup, but all focus on having you download Canon drivers. However, when someone attempts to download the driver, the download fails and the site displays a message with a phone number you can call for assistance. A very testing download. Except not really.

Scams 119

Scams Internet Internet Cryptocurrency 119

The Hacker News

MAY 29, 2024

Cybersecurity researchers have warned of a new malicious Python package that has been discovered in the Python Package Index (PyPI) repository to facilitate cryptocurrency theft as part of a broader campaign. The package in question is pytoileur, which has been downloaded 316 times as of writing.

Cryptocurrency 98

Cryptocurrency Cybersecurity 98

Malwarebytes

DECEMBER 20, 2022

If you’re a user of the Gemini cryptocurrency exchange, it’s time to be on your guard against phishing attacks. Breaches in cryptocurrency land are always a major issue. Some folks have their life savings and investments in these realms, and cryptocurrency/Web3 phishing generally has been running riot for some time now.

Cryptocurrency 77

Cryptocurrency Phishing Scams Accountability 77

Hot for Security

JUNE 17, 2021

At the time we warned users of the hardware cryptocurrency wallet to watch out for phishing scams that might attempt to steal users’ credentials. It does not contain any application to download and install on your computer. The only way to download the Ledger Live app is by using the official download page.

Cryptocurrency 145

Cryptocurrency Data breaches Scams Phishing 145

Identity IQ

MAY 3, 2021

There’s no doubt about it, cryptocurrency is increasingly entering into the main fray as a currency of choice. But also on the rise are cryptocurrency-related scams. According to the “Cryptocurrency Scam Report,” published by fraud prevention company Bolster, more than 400,000 crypto scams were created over the last year.

Cryptocurrency 105

Cryptocurrency Scams Media Accountability 105

Malwarebytes

DECEMBER 5, 2022

Now, researchers at Volexity have analyzed a new campaign that is likely targeting cryptocurrency users and organizations with a variant of the AppleJeus malware by using malicious Microsoft Office documents. One of the group's preferred tactics is to use trojanized cryptocurrency related apps, like AppleJeus. Lazarus Group.

Cryptocurrency 80

Cryptocurrency Malware Scams Cybercrime 80

The Hacker News

MAY 10, 2024

The North Korean threat actor tracked as Kimsuky has been observed deploying a previously undocumented Golang-based malware dubbed Durian as part of highly-targeted cyber attacks aimed at South Korean cryptocurrency firms.

Malware 110

Malware Cryptocurrency Cyber Attacks 110

Security Affairs

OCTOBER 23, 2021

CISA warned of crypto-mining malware hidden in a popular JavaScript NPM library, named UAParser.js, which has millions of weekly downloads. The popular library has million of weekly downloads. The names of the three npm packages were klow , klown , okhsa that were installing cryptocurrency miners on both Windows or Linux platforms.

Malware 128

Malware Cryptocurrency Accountability Software 128

Malwarebytes

FEBRUARY 22, 2022

In reality this application was a Trojan dropper which contacted a remote server and downloaded one of several payloads based on certain parameters. The Fast Cleaner app has now been removed from the Play Store but not before it was downloaded more than 50,000 times. One of these payloads was the banking Trojan Xenomorph.

Banking 103

Banking Backups Malware Cryptocurrency 103

Malwarebytes

DECEMBER 13, 2023

Threat actors have been alternating between different keywords for software downloads such as “Advanced IP Scanner” or “WinSCP” normally geared towards IT administrators. tech Download URL zoom-us[.]tech/ZoomInstaller.zip com Download URL youstorys[.]com/fonts/Zoom-x64.msix msix Download URL scheta[.]site/apps.store/ZoomInstaller.msix

Cryptocurrency 65

Cryptocurrency Advertising Malware Accountability 65

Security Affairs

JUNE 27, 2023

An unnamed Japanese cryptocurrency exchange was the victim of a cyber attack aimed at deploying an Apple macOS backdoor named JokerSpy. Elastic Security Labs researchers provided details about a recently discovered intrusion at an unnamed cryptocurrency exchange, aimed at deploying an Apple macOS backdoor named JokerSpy.

Cryptocurrency 83

Cryptocurrency Spyware Malware Architecture 83

Malwarebytes

APRIL 9, 2021

Because a lot of projects rely on many of the same dependencies, developers can get their projects off to a flying start by building on top of pre-configured container images, which can be downloaded from online image repositories like Docker Hub. They could end up with a huge number of systems mining cryptocurrency for them for free.

Cryptocurrency 78

Cryptocurrency Software Accountability Malware 78

Security Affairs

MARCH 8, 2021

Experts warn of ongoing attacks targeting QNAP network-attached storage (NAS) devices to abuse them in cryptocurrency mining. Researchers at 360Netlab are warning of a cryptocurrency malware campaign targeting unpatched QNAP network-attached storage (NAS) devices. Unity is an XMRig cryptocurrency miner. and Quick.tar.gz.

Cryptocurrency 100

Cryptocurrency Firmware Malware Threat Detection 100