• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

TronWeekly

Crypto World News

  • Home
  • Education
    • Best TRON Wallets
    • Beginner’s guide to TRON
  • Opinion
    • Tron Tokens
    • Market Analysis
  • Industry
    • Tron Exchange
    • Project Review
  • Press Release
  • Advertise
  • About us
    • The Team
    • Editorial Policy
    • Write for us
    • Privacy Policy
    • Disclaimer
    • Terms and Conditions
    • Contact
You are here: Home / Archives for Cyber security

Cyber security

Palo Alto Networks CEO Urges Swift Cybersecurity Overhaul Amid Evolving Threats

August 23, 2023 by Mohammad Ali

Nikesh Arora, the CEO of Palo Alto Networks, a prominent cybersecurity firm, has delivered a clear and urgent message, urging businesses to overhaul their cybersecurity approaches in response to the rapidly evolving landscape of threats. Arora’s alert arises as malicious actors expedite their capacity to infiltrate corporate safeguards, demanding swift adjustments, especially from companies still dependent on outdated security mechanisms.

As per a recent report, Arora underlined the pressing nature of the circumstance, directing his focus primarily on businesses that are holding onto antiquated security systems. Arora prompted these companies to swiftly adjust to the changing threat environment, highlighting that cybercriminals are advancing rapidly.

Palo Alto Networks CEO Nikesh Arora told @jimcramer that companies need updated cybersecurity systems to protect against hackers who are getting faster and more skilled.https://t.co/Vajy9LnJiP

— Mad Money On CNBC (@MadMoneyOnCNBC) August 22, 2023

Palo Alto Networks CEO emphasized the critical need for companies with outdated security infrastructure to be especially vigilant as cybercriminals evolve alarmingly. He went as far as to propose the integration of artificial intelligence as a vital component in fortifying digital defenses against these relentless threats. Palo Alto Networks CEO said, “It’s important for us to make sure we’re ready to deflect the stuff in hours, not in days,”

Arora’s message aligns with the broader industry shift towards harnessing AI-driven solutions to counter cyber threats. In a noteworthy move earlier this year, OpenAI, the organization behind creating the ChatGPT AI model, unveiled a substantial $1 million cybersecurity grant program. The initiative aims to bolster the development and assessment of AI-powered cybersecurity technologies, underlining the increasing reliance on artificial intelligence to safeguard digital assets.

Palo Alto Network CEO Call To Action Against Rising Cyber Threats

In the wake of escalating and increasingly intricate cyber threats, the CEO of Palo Alto Networks underscored the critical need to adapt, evolve, and adeptly counter these risks. Such a strategic maneuver could prove pivotal in maintaining a competitive edge over digital adversaries.

Palo Alto Networks CEO urgent call resonates amid a crypto crisis. 2023 has seen a relentless wave of cyberattacks within the cryptocurrency realm, with Q2 losses eclipsing $300 million. As per recent data from De.Fi Rekt database  Decentralized finance (DeFi) protocols have borne the brunt, with Exactly Protocol, Zunami Protocol, Steadefi Protocol, and Cypher Protocol among the casualties. Notably, not all these incidents were traditional cyber breaches; smart contract flaws and flash loan exploits played a role.

Regulatory bodies are intensifying efforts to enforce comprehensive cybersecurity disclosure requirements, as evidenced by the recent decision of the U.S. Securities and Exchange Commission (SEC) to impose stricter regulations on cybersecurity reporting, a decision that sparked intense debate. The SEC’s mandate necessitates that publicly traded firms, including those in the cryptocurrency domain, reveal significant cyber breaches within an incredibly brief four-day timeframe, with the rationale behind the measure rooted in safeguarding investor interests.

However, numerous companies expressed disagreement with the proposed timetable, citing concerns about feasibility and potential adverse consequences. These apprehensions echoed sentiments articulated by Nikesh Arora, who questioned the wisdom of revealing breaches without timely resolution. 

Arora cautioned that prematurely disclosing ongoing vulnerabilities to the SEC might exacerbate the situation, leaving companies susceptible to further attacks. He advocated for a more expeditious approach to rectifying cybersecurity gaps.

Related Reading:| CBDC of Bahamas must increase its cybersecurity: IMF

Filed Under: Cyber Security, News Tagged With: chatgpt, Cryptocurrency, Cyber security, DeFi, Nikesh Arora, Palo Alto, SEC

BlackBerry Thwarts 1.5 Million Cyberattacks Amidst Growing Crypto Threats

August 3, 2023 by Mohammad Ali

Amid relentless cyber warfare, BlackBerry’s cybersecurity division emerged victorious after successfully neutralizing over 1.5 million cyberattacks during the months of March and May. This commendable feat highlights a disturbing trend of malware families attempting to hijack computers for cryptocurrency mining or outright theft.

According to the recent report released by BlackBerry, the financial, healthcare, and government sectors bore the brunt of these cyber onslaughts. Among the notorious malware lurking in the digital shadows was RedLine, a commoditized threat designed to harvest cryptocurrency and banking information. This insidious malware had its sights set on numerous financial institutions, posing a significant risk to the integrity of financial systems.

One of the most prevalent threats encountered during this period was Clop ransomware, a menacing variant of the CryptoMix ransomware family. Its primary targets were banking and financial institutions, with Hatch Bank falling victim to a crippling data breach caused by this nefarious malware.

BlackBerry’s Notorious Malware Charts Revealed

In its comprehensive analysis, BlackBerry identified the top-performing malware families causing havoc in the digital landscape. SmokeLoader, RaccoonStealer (also known as RecordBreaker), and Vidar emerged as the most notorious culprits. 

Think only enterprises get hacked? If you’re a mid-market or small business, you still have a big target on your small or mid-size back. BlackBerry's @aboutsecurity shares why cybercriminals select targets based on impact & how much they're willing to pay. https://t.co/2LBlurWMiL

— BlackBerry (@BlackBerry) August 3, 2023

SmokeLoader, a rogue financial tool dating back to 2011, was wielded by Russian-based threat actors to deploy crypto miners and other malicious software. RaccoonStealer, on the other hand, specializes in the theft of cryptocurrency wallet data, gaining popularity in the dark web’s illicit markets. Meanwhile, Vidar’s malicious intent was focused on harvesting cryptocurrency wallets, leaving unsuspecting users vulnerable to significant losses.

Among all operating systems, Linux bore the brunt of relentless attacks from cybercriminals. BlackBerry emphasized regularly applying security patches to safeguard Linux systems against crypto mining hijacks. Hackers exploited Linux vulnerabilities to surreptitiously use computer resources for mining cryptocurrencies, capitalizing on the digital gold rush.

In a concerning development, a new strain of info stealer named Atomic macOS surfaced, targeting unsuspecting macOS users. This insidious malware specializes in stealing credentials from keychains, browsers, cryptocurrency wallets, and more. The emergence of this threat put macOS users on high alert, as the risk of falling victim to cryptocurrency theft increased significantly.

Amidst the ever-evolving landscape of cybersecurity threats, OpenAI, the visionary creator of ChatGPT and Dall-e, recently unveiled a groundbreaking $1 million cybersecurity grant program. The initiative aims to bolster and assess the impact of AI-driven cybersecurity technologies, forging new frontiers in the ongoing battle against cybercrime.

“Our aim is to foster the advancement of AI-driven cybersecurity capabilities for defenders through grants and additional assistance,” Stated By OpenAI officials 

In the face of escalating cyber threats, BlackBerry’s cybersecurity arm stands as a formidable guardian, tirelessly defending against the sinister plots of cybercriminals. Through vigilance, innovation, and collaboration, the digital realm can be secured against those who seek to exploit its vulnerabilities for malicious intent.

Related Readings:| Bitcoin Traders Could Be In For A Little Surprise This Weekend

Filed Under: Cyber Security, News Tagged With: blackberry, Crypto, Cryptocurrency, cyber attack, Cyber security

7 Cyber Security Tips for Staying Safe While Gaming Online

August 30, 2022 by Akash Anand

Are you a gamer who likes to play online? Whether you’re a casual player or a hardcore competitor, there are some important cybersecurity tips that you probably need to know to stay safe while gaming online. By following these simple tips, you can protect yourself from online threats and keep your gaming experience enjoyable and safe.

Use Strong Passwords and Change Them Often

One of the most important cyber security tips for online gaming is to use strong passwords and change them often. Hackers are going to be looking for ways to access accounts and steal personal information, so it’s important to have a strong password that they won’t be able to guess.

Change all of your passwords regularly, and make sure to use a different password for each account. You can also use a password manager to help you keep track of all your passwords and make sure they’re strong.

Another fundamentally important tip is not to use the same password for everything. If a hacker gains access to one of your accounts, they’ll then have access to all of them if you’re using the same password. So, make sure to use different passwords for each of your accounts, and change them regularly.

Enable Two-Factor Authentication

Two-factor authentication is another important cybersecurity measure that you should take when gaming online. This adds an extra layer of security to your account by requiring you to enter a unique code from your phone or another different device in addition to your password.

This makes it much harder for hackers to gain access to your account, even if they have your password. So, if your gaming platform offers two-factor authentication, be sure to enable it.

Only Enter Your Personal Information If the Site Is Trustworthy

When you’re gaming online, you may be asked to enter personal information such as your name, address, or credit card number. Only enter this information on sites that you trust and are sure are secure. There are many phishing scams where hackers will create a fake site that looks legitimate to get your personal information. So, only enter your personal information on sites that you trust.

Only ever use trustworthy sites that show the ‘s’ in the initial ‘https’ part of the website’s URL when you arrive at the homepage, which indicates it’s a secure site. These websites tend to have encryption to protect your information, so you can play while being assured your data is safe.

You can also check for site reviews before entering any personal information. Say you fancy a few rounds of roulette, and you’re looking for a legitimate site that you can play on. In that case, you’re going to need to enter some personal information, and that means you want to be sure that you’re choosing a renowned, established platform with a good reputation.

Also, roulette is one of those games you could be playing for a while, so it makes sense to pick a good site that has plenty of playing options and lots of different incentives, such as https://www.cafecasino.lv/casino/table-games/roulette-games which has myriads of games.

In any case, wherever you’re playing roulette online, you want to feel safe and secure, knowing your details are protected and out of the hands of hackers and scammers. Just like anything, from cryptocurrencies to any other tech, you need to make sure everything is trustworthy with what you’re doing – so always check the site, the reviews, and the ‘https’ in the URL.

Keep Your Anti-Virus Software Up to Date

One of the most important cyber security tips for online gaming is to keep your anti-virus software up to date. This will help protect your computer from any malicious software that might be trying to infect it.

Hackers are always creating new viruses and malware, so it’s important to have the latest anti-virus software to protect your computer. Be sure to keep your anti-virus software up to date and run regular scans.

Don’t Click on Any Links from People You Don’t Know

When you’re gaming online, you may receive messages or invitations from people you don’t know. Don’t click on any links that they send you, as these could be malicious.

Hackers will often send links that look legitimate but are viruses or phishing scams. So, it’s important to be cautious of any links that you receive from people you don’t know. If you’re not sure if a link is safe, you can always ask a friend to check it for you.

Avoid Downloading Games or Other Files from Unknown Sources

When you’re looking for new games to play, be sure to download them from a trusted source. Many websites offer pirated or illegal copies of games, which could contain viruses or malware.

So, it’s important to only download games from trusted sources like the App Store or Steam. If you’re not quite sure if a website is safe, you can always check for reviews before downloading anything.

Make Sure Your Computer’s Firewall Is Enabled

A firewall is a piece of software that helps to protect your computer from malicious internet traffic. Enabling your computer’s firewall is one of the best things you can do to improve your cyber security.

Most computers come with a firewall enabled by default, but it’s always a good idea to check and make sure. You can usually find the firewall settings in your computer’s security or privacy settings.

These are just a few of the many cyber security tips that you need to know to stay safe while gaming online. Be sure to follow these tips to help protect yourself from hackers and other cyber threats. And if you’re ever unsure about something, be sure to ask a friend or trusted source for help. Stay safe out there.

Filed Under: Cyber Security, Press Release Tagged With: Cryptocurrency, Cyber security, GAMING

Beware of “OTP” bots that can steal all your cryptocurrency

February 17, 2022 by Goku

Hackers are deploying bots acquired on Telegram to deceive people into giving them access to their crypto accounts.

One Time Password (OTP) bots, according to research from cybersecurity firm Intel471, are “remarkably easy to employ” and “quite inexpensive to operate” in comparison to the amount of money that scammers can make from a successful assault.

Hackers may gain access to a Telegram bot called ‘BloodOTPbot’ for a monthly cost of $300. Fraudsters can also spend an extra $20 to $100 on more phishing tools that target individual Instagram, Facebook, Twitter accounts, banking services like Paypal and Venmo, and cryptocurrency platforms like Coinbase.

OTP bots are particularly nasty since they are usually the last stage in the hacking process after all vital personal information about the target has been acquired, often known as “the fullz” in hacker jargon. Hackers utilize the OTP bot to imitate an official phone call while requesting the user’s crypto platform for the 2FA code. Hackers obtain fast and complete access to the victim’s account after the often agitated user divulges the code.

Scammers deploy fear and feed on it

Dr. Anders Apgar, a Coinbase user, is the latest victim of this attack, as per the reports by CNBC. He claimed that his account was hijacked during a robocall and had a coin balance of more than $100,000.

The couple stated that their nightmare started when they received a text message. “When she picks it up, a banner came across a notification that says, ‘Your account’s in jeopardy,'” he said.

Dr. Anders Apgar, Image from CNBC

Dr. Agpar’s two-factor authentication (2FA) code was revealed over the phone, and he was locked out of his own Coinbase account, which housed around $106,000 in Bitcoin (BTC).

OTP bot assaults are becoming more common, generating significant losses to both institutions and regular retail investors. The bots have a very high success rate when it comes to extracting revenue.

“Coinbase would never conduct unsolicited calls to its users,” a Coinbase spokeswoman told CNBC. “We advise everyone to be cautious when providing information over the phone.” Do not give out any account information or security codes if you receive a call from someone pretending to be from a financial institution. Instead, hang up and call them at the organization’s official phone number posted on their website.”

Filed Under: News, Crypto Scam, Cyber Security Tagged With: Crypto Scam, Cryptocurrency, Cyber security, OTP bots

Crypto founder reveals how he almost lost all his ETH to a $125M social engineering scam

February 16, 2022 by Goku

Thomasg.eth, a decentralized autonomous organization (DAO) creator on Twitter, has disclosed how a social engineering fraud nearly cost him all of his ETH. He detailed how fraudsters almost grabbed him in a lengthy thread.

Cybercriminals utilize social engineering to acquire someone’s confidence, frequently through deception, in order to steal sensitive information or compel them to do something “they wouldn’t do otherwise.”

Thomasg.eth is the pseudonymous founder of Arrow, a decentralized air transportation DAO in its early stages.

According to the creator, the fraudsters went to great lengths to steal the founder’s money, including generating work for his project and participating in chats with several persons over the course of two weeks.

The social engineering scam only failed because Thomasg.eth chose to utilize a different Ethereum address rather than his primary address while performing a favor for the hackers using non-fungible tokens (NFTs).

For the past two weeks, I've been targeted in an extremely thorough social engineering scam that nearly cost me all of my ETH. I'm super lucky to have made it through unscathed. Here's the story 👇

— thomasg.eth (@thomasg_eth) February 13, 2022

How the social engineering scammers tried to pull off their act

He said that he was contacted by someone named Heckshine around two weeks ago. Heckshine claimed to be a Ubisoft employee and offered 3D modeling and animation assistance.

Heckshine also has an associate named Linh, who was claimed to be working on a metaverse project called Space Falcon and sought a relationship with Arrow DAO. Before moving with the agreement, Thomas said that he verified Space Falcon to make sure it was a legitimate project on Solana and found Lihn’s name on it.

However, all of this turned out to be a big con job. Linh even extended an invitation to Thomas to take a tour of the Wisk plant. After Linh notified him of a new staking software for NFT that had recently debuted, the red flags began to appear. She requested that he obtain NFT in order to assist her in testing the software.

Thomas established a separate wallet for the purpose of receiving the NFT instead of using his regular wallet. Linh then proposed sending another NFT to the main wallet.

Fortunately, Thomas went through the contract first and noticed that it had a method that allowed the fraudsters to transmit all of the wrapped ETH to his wallet.

While this attempt failed, it demonstrates the lengths to which crypto fraudsters are ready to go. In this scenario, the con artists were pros who performed their tasks to near-perfection. They plagiarized an actual project and registered a domain with a similar name.

Only Thomas’s knowledge spared him from becoming a victim. This, he claims, demonstrates that fraudsters are becoming more sophisticated and that token approval may be exceedingly risky.

Filed Under: Crypto Scam, Blockchain, Cyber Security, News Tagged With: Crypto Scam, Cyber security, DAO, Social engineering scam

White hat hacker saved Coinbase from a major trading exploit

February 13, 2022 by Goku

Cryptocurrency exchange Coinbase was warned of a vulnerability in its trading systems on Friday afternoon by the pseudonymous white-hat hacker “Tree of Alpha.” Coinbase, in response, temporarily paused trading on its new Advanced Trading platform.

On Feb 11, 2022, @Tree of Alpha drew the attention of Coinbase leadership after tweeting that they identified a “potentially market-nuking” issue and was filing a HackerOne report. HackerOne is a forum that handles bug bounty programs for firms, including Coinbase.

“The issue is sensitive and could allow malicious users to send all Coinbase order books to arbitrary prices,” the white-hat hacker said through Twitter.

https://twitter.com/Tree_of_Alpha/status/1492201011955519495

Coinbase reacts swiftly to save the day

Coinbase is one of the significant cryptocurrency exchanges. Its price feeds are also utilized as inputs for oracles, which establish the genuine pricing of tokens for applications such as DeFi protocols.

After the original tweet prompted anxiety in the crypto community, Tree of Alpha tweeted a follow-on Twitter claiming, “No actual Coinbase storages (cold or otherwise) are impacted.”

Within two hours following the Tree of Alpha’s original tweet, the Coinbase Support Twitter account declared that, due to technical difficulties, Coinbase was halting trading on its new Advanced Trading platform. While the service would still be available, consumers would be able to cancel existing purchases but not place new orders. The Advanced Trading service is provided exclusively to a restricted audience.

For technical reasons, we are disabling retail advanced trading. This service will continue to be accessible, but new orders cannot be placed at this time. Existing orders are in cancel only mode.

— Coinbase Support (@CoinbaseSupport) February 11, 2022

After almost 2 hours, Coinbase tweeted that they have re-enabled full service for retail advanced trading.

We’ve re-enabled full service for retail advanced trading. Greatly appreciate the patience and understanding of those retail advanced trading customers using our exciting new platform prior to full-public launch. Customer funds remain safe and were not impacted. https://t.co/tACcyQPMpZ

— Coinbase Support (@CoinbaseSupport) February 11, 2022

Coinbase CEO Brian Armstrong commended Tree of Alpha for helping out the Coinbase staff, noting how he “loves how the crypto community helps each other out!”

.@Tree_of_Alpha you're awesome – a big thank you for working with our team

love how the crypto community helps each other out!

— Brian Armstrong – barmstrong.eth (@brian_armstrong) February 11, 2022

This isn’t the first time Tree of Alpha has warned significant crypto firms about flaws in their coding. He had tried to reach out to coindesk’s dev team as per his tweet on Jan 21, 2022. He urged in the tweet that he wanted an email address where he could contact them. The tweet signified that Alpha was looking into how coindesk articles were being leaked before they were published.

Anyone know people on the @CoinDesk dev team? Need a contact asap and couldn't find an email besides news@coindeskdotcom.

🧵next week.

— Tree of Alpha (@Tree_of_Alpha) January 21, 2022

At times of increased exploits and scams, collaborations like this with white hat hackers are a lifesaver for safeguarding the funds of millions.

Filed Under: News, Crypto Scam, Cyber Security Tagged With: Coinbase, Crypto Scam, Cyber security, White hat hacker

Latest Defi bridge exploit led to Meter’s loss of $4.4M

February 8, 2022 by Goku

In a recent Defi bridge exploit, blockchain infrastructure business Meter.io has revealed that US$4.4 million was stolen in an assault on its network on February 6 and has subsequently warned users not to trade unbacked meterBNB circulating on the Moonriver parachain.

Community, unfortunately Meter Passport was hacked a few hours ago. Please do not trade the unbacked meterBNB that is circulating on Moonriver.

We have identified the issue: Passport has a feature to automatically wrap and unwrap gas tokens like ETH and BNB for user convenience.

— ⚡️Meter.io⚡️ (@Meter_IO) February 5, 2022

This malicious assault where tokens were minted by a hacker using a smart contract vulnerability eventually led to a cascading effect over other DeFi networks.

The hack was executed around 6 am PST. The hacker used a loophole in the bridge to mint a considerable quantity of BNB and WETH tokens, which exhausted these reserves on the bridge, Meter Passport. Meter got aware of the depletion and suspended all bridge transactions. The hacker exploited a bug inserted onto the bridge by the Meter team. The team introduced a new bug that is able to wrap and unwrap BNB and ETH automatically. The code inferred trust erroneously, which let the hacker call the ERC20 deposit function to simulate transfers of BNB and ETH. This exploit disrupted the Meter and Moonriver networks.

Peckshield, a blockchain security firm, announced that the stolen funds include 1391.24945169 ETH and 2.74068396 BTC.

The @Meter_IO is hacked with the loss of $~4.3M (including 1391.24945169 ETH + 2.74068396 BTC). The extension over the original (unaffected) ChainBridge introduces a false deposit issue !!! https://t.co/YShfXnEZzD pic.twitter.com/oY6bpau8DA

— PeckShield Inc. (@peckshield) February 6, 2022

Meter warned users of the exploit

Meter went and out and warned users on Twitter immediately when they were aware of the exploit. They are also working on a reimbursement strategy to compensate the ones affected. “We are working on taking a snapshot from before the attack & will convert the original BNB & WETH to 1:1 their values in MTRG, the rest inflated BNB & WETH will be converted based on the hacker stolen value from the LP pools.” “We’ve set aside $4.4M of MTRG based on today’s price,” they added.

Meter also warned users to remove their liquidity involving WETH and BNB liquidity pool and wait for an additional announcement from the Meter team. They also urged to avoid trading in these pairs.

This recent attack on Meter was followed by one of the largest exploits that happened recently on the wormhole. Wormhole was hacked, and It has been estimated that $323 million worth of Ethereum (ETH) has been stolen. Meter also tweeted that they have upgraded their smart contracts, and passport is back online.

Filed Under: News, Crypto Scam, Cyber Security Tagged With: Crypto Scam, Cyber security, DeFi

Binance CEO CZ warns users of a massive phishing scam

February 5, 2022 by Goku

CEO of Binance, Changpeng Zao, has notified users about a giant SMS phishing scam aimed against Binance users. The fraud of the world’s largest cryptocurrency trading platform is diverting consumers to a malicious website to steal passwords.

He made the news in a tweet on Friday. “There is a massive Phishing scam via SMS with a link to cancel withdrawals. It leads to a phishing website to harvest your credential as in the screenshot below,” he said. He also warned his users to never click on links from any unknown SMS. He urged users to always go to Binance.com via a bookmark or type it.

There is a massive Phishing scam via SMS with a link to cancel withdrawals. It leads to a phishing website to harvest your credential as in the screenshot below.

NEVER click on links from SMS!

Always go to https://t.co/9rMMAmtCxH via a bookmark or type it in.

Stay #SAFU pic.twitter.com/erNwe90FN1

— CZ 🔶 Binance (@cz_binance) February 4, 2022

Are only Binance users at risk?

It is yet unknown if this phishing is just aimed against Binance users. Given what’s known, they are the only ones impacted. It is clear that other systems are also on the target list. The number of Binance users who have been victims of the current phishing scam hasn’t been recorded or revealed.

In the screenshot that CZ shared, the phishing message comprises a warning to users that someone is allegedly trying to withdraw their funds. Users are prone to panic at that moment, which will eventually lead them to click on the provided link. 

Once they click the link, the hackers will rip off their credentials, and eventually, they will lose all their funds.

Growing list of scams

The crypto market has been continually experiencing several sorts of illicit activities. This sector has been infested with scammers from rug pulling to the malware that can steal your fund. Recently $30 million was taken off from Crypto.com users on January 17. The most recent Wormhole bridge attack experienced a catastrophic loss of $323 million from the protocol.

Crypto scammers have taken over $14 billion in the year 2021. The number of users who fall victim to scams is on the rise. The growing popularity of cryptocurrencies also lures scammers to find ways to leverage this popularity. People should do their research. Many scammy projects endorse celebrities to gain the public’s trust. But it’s you who has to research because only you know your finances.

Filed Under: News, Crypto Scam, Cyber Security Tagged With: Binance, Crypto, Cyber security, CZ

‘Mars stealer’: a new malware that can attack your 2FA and steal your crypto

February 4, 2022 by Goku

According to 3xp0rt, Mars Stealer, an enhanced malware variant of the Oski Stealer virus released in November 2019, can reap cryptocurrencies from popular browser plugins, according to USAPTC. The new deadly spyware targets browser-based bitcoin wallets. The malicious malware dubbed Mars Stealer can obtain private keys and logins to 2-Factor Authenticator (2FAs) plugins.

“Mars Stealer written in ASM/C with using WinApi, weight is 95 kb. Uses special techniques to hide WinApi calls, encrypts strings, collects information in the memory, supports secured SSL-connection with C&C, doesn’t use CRT, STD.”

Report by 3xp0rt

A malware that can steal your credentials

Mars Stealer is the newest version of Oski Stealer. This virus first surfaced in 2019 and was used to capture personal and sensitive information afterward sold for sale on Russian underground hacker forums.

The malicious program acts by gathering material and information from affected devices. It employs specific ways to harvest information from the memory of browser extensions, bitcoin wallets, and 2FAs.

Being a lightweight virus of only 95kb weight, Mars Stealer does not strain the infected operating system and hence does not emit any clear signals of it being infiltrated. Apart from that, it has the capacity to delete itself when the data has been stolen.

Who is under threat?

As of now, the primary victims of this malware threats are:

Browser extensions: Internet Explorer, Microsoft Edge (Chromium Version), Kometa, Amigo, Torch, Orbitium, Comodo Dragon, Nichrome, Maxxthon5, Maxxthon6, Sputnik Browser, Epic Privacy Browser, Vivaldi, CocCoc, Uran Browser, QIP Surf, Cent Browser, Elements Browser, TorBro Browser, CryptoTab Browser, Brave, Opera Stable, Opera GX, Opera Neon, Firefox, SlimBrowser, PaleMoon, Waterfox, CyberFox, BlackHawk, IceCat, K-Meleon, Thunderbird.

Crypto extensions: TronLink, MetaMask, Binance Chain Wallet, Yoroi, Nifty Wallet, Math Wallet, Coinbase Wallet, Guarda, EQUAL Wallet, Jaox Liberty, BitAppWllet, iWallet, Wombat, MEW CX, Guild Wallet, Saturn Wallet, Ronin Wallet, Neoline, Clover Wallet, Liquality Wallet, Terra Station, Keplr, Sollet, Auro Wallet, Polymesh Wallet, ICONex, Nabox Wallet, KHC, Temple, TezBox Cyano Wallet, Byone, OneKey, Leaf Wallet, DAppPlay, BitClip, Steem Keychain, Nash Extension.

2FA plugins: Authenticator, Authy, EOS Authenticator, GAuth Authenticator, Trezor Password Manager.

Crypto wallets: Bitcoin Core and all derivatives (Dogecoin, Zcash, DashCore, LiteCoin, etc.), Ethereum, Electrum, Electrum LTC, Exodus, Electron Cash, MultiDoge, JAXX, Atomic, Binance, Coinomi.

How to stay safe from the malware?

Crypto wallet security has frequently been a contentious issue for discussion as many scams and theft reports have taken place in the cryptocurrency world. The malware’s primary means of spreading include scandalous distribution channels, unauthorized file-hosting, and P2P sharing websites.

To limit the chance of malware infection, experts suggest frequently upgrading apps and software. It is also crucial not to utilize unapproved or unverified web sources and not click fishy emails, links, or files.

Filed Under: Crypto Scam, Cyber Security, News Tagged With: Crypto Scam, Cyber security, Malware, Mars stealer

DataDAO exposed: PeckShield warns users of a backdoor that can steal funds

February 1, 2022 by Goku

PeckShield recently tweeted that a project named DataDao has a backdoor to steal user funds with approvals. They also added and asked users to stay away from it. DataDao project portrays itself as a data marketplace platform. It’s the recent project to jump on the long list of continuing scams. Users were warned of the questionable code through their tweet, which went live on January 31st, 2022.

#Scam PeckShield has detected #DataDao https://t.co/xMn75mmMS9 has a backdoor to steal user funds with approvals. Stay *AWAY* from it! #Fantom pic.twitter.com/JiYqIP7xX7

— PeckShieldAlert (@PeckShieldAlert) January 31, 2022

PeckShield exposed DataDao

The project is one of an ever-growing number of probable frauds hitting the crypto industry, notably the DeFi sector. DataDAO itself has not yet responded to the notice, and there has been no conversation about it in the larger crypto community either.

They have very few followers on Twitter and a visibly unprofessional website. No users have reported the theft of their funds as of now.

Founded in 2018, PeckShield is a blockchain security firm with team members from organizations including Microsoft, Intel, and Alibaba. They also provide security solutions and tools, in addition to the DAppTotal and CoinHolmes services. A few weeks ago, they spotted 50 probable scam tokens on the Binance Smart Chain.

Growing scams in 2022

As per the reports by CNBC, there has been a whopping theft of $14 billion in cryptocurrency in 2021. Cryptocurrencies theft surged 516 percent from 2020 to $3.2 billion worth of cryptocurrency. Of this sum, 72 percent of stolen funds were obtained from DeFi protocols. Scamming was the main kind of cryptocurrency-based crime in 2021, followed by theft — most of which occurred through the hacking of crypto firms. One recent exploitation was conducted on Qubit Finance, where the hacker stoles fund worth almost $80 million.

Stay away from the scams

One precaution that investors can take is to stay away from scammy projects. Always check for legitimate and trustful projects. Ensure that you check out their website, social media channels and read out their whitepaper. Look for team images and the investors and companies that back the project. It’s your blood and sweat money, and it doesn’t make sense to lose it to scammers. It doesn’t hurt to gear up before diving.

Filed Under: Crypto Scam, Cyber Security, News Tagged With: Crypto Scam, Cyber security, DataDao, Peckshield

  • Go to page 1
  • Go to page 2
  • Go to Next Page »

Primary Sidebar

Recent Posts

  • Ethereum Poised For $2,340 Surge Amidst Resilient Uptrend December 8, 2023
  • Dogecoin to the Moon: DOGE-1 Mission Soars December 8, 2023
  • Shiba Inu’s Blazing Burn: First Hard Fork Ignites Multiple Token Model December 8, 2023
  • Grayscale CEO Defends Crypto Against JPMorgan Chief’s Call For Ban December 8, 2023
  • Cardano (ADA) Poised For 70% Rally By Late December, Analysts Optimistic December 8, 2023

Footer

News

  • Altcoin News
  • Bitcoin News
  • Blockchain
  • Tron News
  • World

Digest

  • Meet the Founder
  • Price Winning Article
  • DeFi
  • Cyber Security
  • Crypto Scam

Industry

  • Project Review
  • Technology
  • Fintech
  • Tron Exchange
  • New in Town

Tron Universe

  • Event and Tron Parties
  • New in Town
  • Tron Tokens

Follow Us

Subscribe US

Copyright © 2023 · Tron Weekly. All Rights Reserved. NOTE: Tron Weekly is an independent crypto news site that adheres to the strict journalism policy anchored on transparency, trust, and objectivity, we have no affiliation with the TRON Foundation, its founder Justin Sun or any other cryptocurrency firm.