New Russian malware, dubbed ‘Infamous Chisel,’ identified targeting Binance, Coinbase, and Trust wallets

2023-9-2 00:40

Newly discovered malware dubbed “Infamous Chisel” targets crypto wallets and other Android apps, according to a U.K. government report on Sept. 1.

The U.K.’s National Cyber Security Centre (NCSC) said that the malware works by scanning various directories on infected mobile devices and exfiltrating data.

The malware is known to extract data from at least three cryptocurrency wallets: Binance App, Coinbase Wallet, and Trust Wallet. Infamous Chisel also extracts data from the Brave and Opera browsers, both of which have cryptocurrency features.

Because the malware is capable of extracting data in general, other apps are also targeted. PayPal, Dropbox, Firefox, Telegram, Skype, WhatsApp, Discord, Viber, and Google Chrome are among the other apps that are vulnerable to attack. A total of 35 application directories, including certain Android system directories, are scanned.

The National Cyber Security Centre’s report did not explicitly state that any data stolen from those apps could allow attackers to steal cryptocurrency, nor did it state whether Infamous Chisel has led to the theft of any cryptocurrency at all. It is possible that any information stolen does not provide attackers with full access to crypto accounts.

Russia’s Sandworm is behind the threat

The latest report notes that Infamous Chisel is associated with Sandworm, a state-sponsored hacker group that is part of Russia’s military intelligence service, GRU. The group is also known by other names including Telebots, Voodoo Bear, and Iron Viking. The group notably launched a high-profile ransomware attack against Ukraine in November 2022 and has carried out other earlier attacks as well.

Sandworm is currently using Infamous Chisel to steal information related to the Ukrainian military. The latest report does not describe any profit motives.

Various international cybersecurity groups have recognized the threat, including those in the U.S., the U.K., New Zealand, Canada, and Australia.

The post New Russian malware, dubbed ‘Infamous Chisel,’ identified targeting Binance, Coinbase, and Trust wallets appeared first on CryptoSlate.

Similar to Notcoin - Blum - Airdrops In 2024

origin »

SherLOCK Security (LOCK) на Currencies.ru

$ 0.1387 (+1.71%)
Объем 24H $13
Изменеия 24h: 10.06 %, 7d: -33.06 %
Cегодня L: $0.1387 - H: $0.1387
Капитализация $0 Rank 3458
Доступно / Всего 0 LOCK / 4.969m LOCK

malware wallets chisel infamous dubbed centre said

malware wallets → Результатов: 49


Mac Users Beware: ‘Realst’ Malware Emerges, Specifically Targeting Crypto Wallets

A new and challenging form of malware dubbed “Realst” currently targets macOS and Windows users, posing a particular risk to Apple computer owners. This cunning malware disguises itself as fake blockchain games, such as Brawl Earth and Dawnland, and spreads through social media promotions and direct messages, putting unwary users in harm’s way. When unwary […]

2023-7-26 16:00


Фото:

‘Save Yourself’ sextortion campaign targets 27 million victims in their inboxes

A well-established botnet and malware agent is now engaged in a new large-scale sextortion campaign by acting as a spambot to target innocent recipients. According to Check Point Research, the creators of the Phorpiex (aka Trik) botnet added this revenue generation ability to trick victims into transferring more than 11BTC (~$89,370) to the threat actors’ wallets over the course of five months.

2019-10-16 16:00


Newly Discovered Spyware Uses Telegram Bots to Steal Cryptocurrency from a Number of Wallets

Jupiter Threat Labs recently released a report about a newly discovered commercial spyware called “Masad Clipper and Stealer.” It uses Telegram bots as its command and control (C2) to phish information from Windows and Android users, along with the capability to steal cryptocurrency from unsuspecting victims, while dumping more malware on their devices. The report […]

2019-9-28 00:30


Security Team Uncovers InnfiRAT Remote Access Trojan (RAT) Designed to Steal Bitcoin Wallet Data

ZsCaler ThreatLabZ released a report on September 12, 2019, noting that security researchers had uncovered a RAT (Remote Access Trojan) malware that was targeting BTC wallets. Dubbed InnfiRAT, the RAT had been designed to perform a broad array of tasks such as infecting the target machine and more specifically seeking information on available LTC (Litecoin) […]

2019-9-19 18:39


New Mac Malware Can Steal Crypto from Exchanges, Can it be Prevented?

Unit 42, the global threat intelligence team at Palo Alto Network, discovered Mac malware that can steal cookies linked to crypto exchanges and wallets. Although usernames and passwords may not be sufficient to initiate withdrawals at crypto exchanges, if hackers manage to steal a combination of login credentials, web cookies, authentication cookies, and SMS data, it could steal user funds.

2019-2-2 21:32


[Attention Bitcoin Users] Razy Trojan Malware is Out to Steal Cryptocurrencies via Wallets and QR Codes

Since cryptocurrency was first introduced about a decade ago, cyber theft and malware became another branch of the financial system. Things have become so bad to the extent that as long as there is cryptocurrency lying somewhere, there will always be someone seated in a dark room thinking of clever ways to steal it from […]

2019-1-30 20:05


Фото:

Security Researchers Reveal Wallet Vulnerabilities On Stage at 35C3

In a demonstration titled “Wallet. fail,” a team of security researchers hacked into the Trezor One, Ledger Blue and Ledger Nano S. Unfortunately, it appears as if their findings were first put on display at the 35th Chaos Communication Congress (35C3) in Leipzig, Germany, rather than through accepted Responsible Disclosure practices, which would have allowed the manufacturers to patch the vulnerabilities and protect their customers from any potential attack.

2019-1-1 19:15