Ib hom tshiab ntawm crypto-malware tau nthuav tawm hauv YouTube, dag cov neeg siv kom rub tawm software uas tau tsim los nyiag cov ntaub ntawv los ntawm 30 crypto hnab nyiaj thiab crypto-browser extensions.
Lub tuam txhab kev txawj ntse Cyber Cyble nyob rau lub Rau Hli 30 blog tshaj tawm hais tias nws tau taug qab cov malware hu ua "PennyWise" - tej zaum yuav muaj npe tom qab tus dab hauv Stephen King's txaus ntshai tshiab "Nws" - txij li nws yog thawj txheeb xyuas lub Tsib Hlis.
"Peb qhov kev tshawb nrhiav qhia tias tus neeg nyiag khoom yog qhov kev hem thawj tshwm sim," sau Cyble hauv blog tshaj tawm rau lub Rau Hli 30.
"Nyob rau hauv nws tam sim no iteration, tus neeg nyiag no tuaj yeem tsom ntau dua 30 browsers thiab cov ntawv thov cryptocurrency xws li cov hnab nyiaj txias crypto, crypto-browser extensions, thiab lwm yam."
Cov ntaub ntawv raug nyiag los ntawm tus neeg raug tsim txom lub cev los ntawm Chromium thiab Mozilla browser cov ntaub ntawv, suav nrog cov ntaub ntawv txuas ntxiv cryptocurrency thiab cov ntaub ntawv nkag. Nws tseem tuaj yeem thaij duab thiab nyiag cov kev sib tham ntawm kev sib tham xws li Discord thiab Telegram.
Cov malware kuj tseem tsom rau cov hnab nyiaj txias crypto-hnab xws li Armory, Bytecoin, Jaxx, Exodus, Electrum, Atomic Wallet, Guarda, thiab Coinomi, nrog rau cov hnab nyiaj txhawb nqa Zcash thiab Ethereum los ntawm kev nrhiav cov ntaub ntawv hnab nyiaj hauv phau ntawv qhia thiab xa ib daim qauv ntawm lub hnab nyiaj. cov ntaub ntawv rau cov neeg tawm tsam, raws li Cyble.
Lub tuam txhab kev ruaj ntseg cybersecurity tau sau tseg tias cov malware tau nthuav tawm hauv YouTube mining kev kawm yeeb yaj kiab qhia tias yuav pub dawb Bitcoin mining software.
Lub cybercriminals, los yog "Thiab Actors" upload yeeb yaj duab qhia cov neeg saib kom mus saib qhov txuas hauv cov lus piav qhia thiab rub tawm cov software dawb, thaum tseem txhawb nqa lawv kom lov tes taw lawv cov software tiv thaiv kab mob uas ua rau cov malware ua tiav.
Cyble tau hais tias tus neeg tawm tsam muaj ntau li 80 cov yeeb yaj kiab hauv lawv cov channel YouTube txij li Lub Rau Hli 30 txawm li cas los xij, cov channel tau txheeb xyuas txij li tau raug tshem tawm.
Kev tshawb nrhiav los ntawm Cointelegraph pom cov kev sib txuas zoo sib xws rau cov malware tseem nyob hauv lwm qhov me me hauv YouTube, nrog cov yeeb yaj kiab cog lus pub dawb NFT-mining, tawg rau software them nyiaj, dawb Spotify hwm, game cheats thiab mods.
Ntau ntawm cov nyiaj no tsuas yog tsim nyob rau hauv 24 teev dhau los.
Related: Bitcoin nyiag malware: iab ceeb toom rau cov neeg siv crypto kom ceev faj
Interestingly, tus malware yog tsim los nres nws tus kheej yog tias nws pom tias tus neeg raug tsim txom nyob rau hauv Russia, Ukraine, Belarus, thiab Kazakhstan. Cyble kuj pom tias cov malware hloov cov neeg raug nyiag lub sijhawm cov ntaub ntawv mus rau Lavxias Standard Time (RST) thaum cov ntaub ntawv xa rov qab mus rau cov neeg tawm tsam.
Lub Ob Hlis, malware npe Mars Stealer tau txheeb xyuas raws li lub hom phiaj crypto hnab nyiaj uas ua haujlwm li Chromium browser txuas ntxiv xws li MetaMask, Binance Chain Wallet lossis Coinbase Wallet.
Chainalysis ceeb toom rau lub Ib Hlis tias txawm tias "cov neeg ua phem tsis zoo cybercriminals" tam sim no siv malware coj nyiaj los ntawm crypto hodlers, nrog rau cryptojacking accounting rau 73% ntawm tag nrho cov nqi tau txais los ntawm malware-txog chaw nyob ntawm 2017 thiab 2021.
Tau qhov twg los: https://cointelegraph.com/news/pennywise-crypto-stealing-malware-spreads-through-youtube