Kaspersky malware6/2/2023 ![]() This means the actual number of infections may be much higher than reported. The top 10 affected countries also include the United States, Germany, Uzbekistan, Belarus, China, the Netherlands, the United Kingdom, and France. These attacks have spread to at least 52 countries worldwide, with the majority of detections in Russia due to users downloading the infected Tor Browser from third-party websites as this browser is officially blocked in the country. Kaspersky technologies have detected more than 15,000 attacks using clipboard injector malware targeting cryptocurrencies like Bitcoin, Ethereum, Litecoin, Dogecoin, and Monero. ![]() Once the file is dropped inside the user’s system, it registers itself in the system’s auto-start and is masqueraded with an icon of a popular application, such as uTorrent. ![]() The purpose of the password is to prevent detection by security solutions. The target user downloads a trojanized version of Tor Browser from a third-party resource containing a password-protected RAR archive. One recent malware development involves the use of Tor Browser, a tool used to access the deeper web. “While this technique has been around for more than a decade and was originally used by banking trojans to replace bank account numbers, with the rise of cryptocurrency, this new type of malware is now actively targeting crypto owners and traders,” Kaspersky said in a media advisory. PH is 2nd most attacked country in the world - Kaspersky Kaspersky blocks over 50K financial phishing attacks vs businesses in PH Other campaigns may use different software and malware delivery methods, as well as other types of wallets. The actual amount stolen could be much greater, as this research focuses only on Tor Browser abuse. It’s estimated that, so far in 2023, cybercriminals have been able to steal approximately $400,000 using this malware. Researchers of cybersecurity solutions company Kaspersky have discovered an ongoing disruptive cryptocurrency theft campaign affecting more than 15,000 users across 52 countries.ĭistributed under the guise of Tor Browser, the malware operates by replacing a portion of the entered clipboard contents with the cybercriminal’s own wallet address once it detects a wallet address in the clipboard.
0 Comments
Leave a Reply. |