Microsoft warns digital currency owners to be aware of new malware

Published at: Sept. 6, 2020

In a tweet, Microsoft Security Intelligence (MSI) warned cryptocurrency owners who are also Windows users on August 27 that their funds in crypto wallets might be in danger because of a new malware.

The new malware, called Anubis, seems to use code forked from Loki. It steals crypto wallet credentials, credit card details and other valuable information from these Windows users.

According to MSI, it first discovered the malware in June in the cybercriminal underground. It has the same name with another potent banking Trojan that has been targeting Android smartphones for months.

Source: MSI Tweet

MSI stressed that the malware seems to be controllable, stating that it has only been deployed in “what appears to be limited, initial campaigns that have so far only used a handful of known download URLs and C2 servers.”

Certain websites trick people into downloading Anubis, then the malware steals information and sends these to command and control servers via an HTTP POST command.

MSI says it will continue to monitor the threat. Cybersecurity experts suggested that the way to avoid the download is not to click on any email that seems fishy. Because the original code Loki used social engineering techniques to target its victims, sending attachments via email, which, once clicked on, would install the malware.

As Cointelegraph reported previously, another new malware was a triple threat to crypto users.

Tags
Blockchain
Cryptocurrencies
Security
Malware
Microsoft
Related Posts
Ransomware Targets Outdated Microsoft Excel Macros to Deploy Attacks
Microsoft Security Intelligence alerted users to a type of ransomware, called Avaddon, that uses Excel 4.0 macros to distribute malicious emails. These emails contain attachments which deploy an attack when opened in any version of Excel. Avaddon ransomware emerged in early June through a massive spam campaign that randomly targeted its victims. Some patterns seem to indicate that the ransomware mostly targets Italian users. Impersonating Italian officials As BleepingComputer reports, the attackers behind the ransomware are recruiting “affiliates” to spread the payload. According to their analysis, Avaddon’s average ransom amount is around $900, paid in crypto. The attack commonly impersonates …
Technology / July 3, 2020
Microsoft transformed home computing — and this project wants to transform DeFi
A decentralized autonomous organization that governs a growing number of protocols says the initial vision for DeFi “has been corrupted by greed, inefficiency and sheer incompetence” — and says a drastic new approach is needed to ensure this sector reaches its full potential. According to Jigstack, the Ethereum landscape is fragmented, with thousands of DApps that offer varying degrees of quality. Millions of dollars in user funds have been lost, hacked, stolen or fraudulently misplaced in the past year — and “everything the industry promised to deliver has yet to be brought to life in a professional manner.” Jigstack’s founders …
Decentralization / April 15, 2021
Ransomware Hackers Threaten to Release Credit Card Data From Costa Rican Bank
A group of hackers dubbed Maze claims to have compromised the infrastructure of Banco BCR, a Costa Rican state-owned bank, and is now threatening to leak millions of credit card numbers. On April 30, Maze claimed that it has scoped out the bank in August 2019: “According to Financial Institutions Protocol this bank had to notify other institutions about the security breach case. But nothing was made. Servers and workstations were not blocked. Private data was not secured. Anyway the Bank decided to conceal information about the breach. Though the security personnel were able to analyze the attack logs and …
Blockchain / May 6, 2020
Law Enforcement’s Guide to Policing Crypto Cybercrimes
2019 demonstrated that cyber-attacks are getting more numerous in the cryptocurrency industry, while hardware remains vulnerable and high-profile data leaks are becoming more common. Even worse, the trend is a continuing one. Way back in June 2018, Kaspersky Lab security experts reported an increase in the amount of malware targeting the cryptocurrency market. They noted a trend toward the spread of two types of malware: for hacking cryptocurrency wallets and for malicious Bitcoin (BTC) mining. As cybercrimes using digital money have begun to affect more countries and involve more advanced technologies, entire states and government organizations have come to grips …
Blockchain / Feb. 19, 2020
ESET Flags New Latin American Banking Trojan That Targets Crypto
Major Slovakia-based antivirus software provider ESET has discovered a banking trojan that can steal cryptocurrencies and is especially widespread in Latin America. Primary targets Known as “Casbaneiro” or “Metamorfo,” the newly found malware family targets banks and cryptocurrency services located in Brazil and Mexico, ESET’s editorial arm WeLiveSecurity reports Oct. 3. According to the report, Casbaneiro uses a social engineering execution method, which displays fake pop-up windows misleading potential victims to enter sensitive information. The capabilities of the malware are typical of Latin American banking trojans that can take screenshots and send them to command and control server, simulate keyboard …
Blockchain / Oct. 3, 2019