[ad_1]
A new strain of crypto-malware is being spread via YouTube, tricking users to download software that’s designed to steal data from 30 crypto wallets and crypto-browser extensions.
Cyber intelligence company Cyble in a June 30 blog post said it had been tracking the malware known as “PennyWise” — likely named after the monster in Stephen King’s horror novel “It” — since it was first identified in May.
“Our investigation indicates that the stealer is an emerging threat,” wrote Cyble in a blog post on June 30.
“In its current iteration, this stealer can target over 30 browsers and cryptocurrency applications such as cold crypto wallets, crypto-browser extensions, etc.”
Data stolen from the victim’s system comes in the form of Chromium and Mozilla browser information, including cryptocurrency extension data and login data. It can also take screenshots and steal sessions of chat applications such as Discord and Telegram.
The malware also targets cold crypto-wallets such as Armory, Bytecoin, Jaxx, Exodus, Electrum, Atomic Wallet, Guarda, and Coinomi, as well as wallets supporting Zcash and Ethereum by looking for wallet files in the directory and sending a copy of the files to attackers, according to Cyble.
The cybersecurity company noted that the malware is being spread on YouTube mining education videos purporting to be free Bitcoin mining software.
The cybercriminals, or “Threat Actors” upload videos instructing viewers to visit the link in the description and download the free software, whilst also encouraging them also to disable their antivirus software which enables the malware to run successfully.
Cyble said the attacker had as many as 80 videos on their YouTube channel as of June 30 however, the channel identified has since been removed.
A search by Cointelegraph found similar links to the malware remain on other smaller YouTube channels, with videos promising free NFT-mining, cracks for paid software, free Spotify premium, game cheats and mods.
Many of these accounts have only been created within the last 24 hours.
Related: Bitcoin stealing malware: Bitter reminder for crypto users to stay vigilant
Interestingly, the malware is designed to stop itself if it finds out the victim is based in Russia, Ukraine, Belarus, and Kazakhstan. Cyble also found that the malware converts the victim’s stolen timezone data to Russian Standard Time (RST) when the data is sent back to the attackers.
In February, malware named Mars Stealer was identified as targeting crypto wallets that work as Chromium browser extensions such as MetaMask, Binance Chain Wallet or Coinbase Wallet.
Chainalysis warned in January that even “low-skilled cybercriminals” are now using malware to take funds from crypto hodlers, with cryptojacking accounting for 73% of the total value received by malware-related addresses between 2017 and 2021.
[ad_2]
Source
purchase arimidex online cheap buy arimidex 1mg online cheap arimidex 1 mg generic
purchase naproxen without prescription buy cefdinir generic purchase lansoprazole
order clarithromycin 500mg online cheap buy antivert pills meclizine 25 mg uk
order generic proventil 100 mcg albuterol 100mcg tablet ciprofloxacin for sale online
buy tiotropium bromide 9mcg oral hytrin hytrin brand
order singulair for sale order generic sildenafil 50mg viagra sildenafil 200mg
order pioglitazone online purchase viagra sildenafil 100mg pills
cialis black otc ed pills cialis tablets
tadalafil 20mg without prescription Cialis us online poker sites
casino online real money play great poker online pala casino online
ivermectin generic cream order stromectol for sale order avlosulfon 100 mg online
play slots online wind creek casino online play real casinos online no deposit
cheap adalat 10mg aceon ca fexofenadine 180mg cheap
real money online blackjack online canadian pharmacy help with essays
ramipril cost purchase amaryl pills generic arcoxia
help with my assignment buy generic sulfasalazine sulfasalazine 500mg over the counter
cheap doxycycline purchase albuterol pills buy cleocin 300mg online cheap
buy mesalamine generic mesalamine 400mg us buy generic irbesartan
olmesartan 10mg tablet olmesartan 20mg drug divalproex 500mg canada
temovate cream cordarone order online amiodarone 100mg pills
amoxicillin 500mg over the counter buy stromectol 3mg generic stromectol drug
buy dapoxetine 60mg online cheap domperidone brand buy domperidone 10mg
indomethacin 50mg us buy indomethacin 50mg pill order generic cenforce 50mg
doxycycline 100mg cost doxycycline over the counter purchase medrol without prescription
tadacip online buy tadacip for sale buy trimox 500mg online cheap
buy esomeprazole 20mg online nexium for sale online furosemide 100mg uk
minocin us buy minocycline 100mg generic terazosin 1mg over the counter
buy glucophage 500mg sale metformin pill purchase nolvadex for sale
buy clomid 100mg without prescription order lipitor prednisolone 10mg us
generic accutane 20mg buy deltasone 10mg without prescription buy ampicillin 500mg online
ivermectin 12 mg pills stromectol 6mg sale order prednisone 20mg pill
prednisolone pills prednisolone 10mg ca lasix price
purchase vibra-tabs pills vibra-tabs oral acyclovir online
buy inderal 10mg online cheap diflucan usa purchase coreg generic
order ditropan 5mg without prescription order oxybutynin 5mg for sale oxcarbazepine 300mg brand
cheap cefdinir 300mg prevacid price buy pantoprazole 40mg generic
simvastatin 20mg cheap sildenafil 200mg for sale viagra sildenafil 150mg