Crypto

Sneaky fake Google Txhais app nruab crypto miner ntawm 112,000 PCs

09/01/2022
Cov Xov Xwm Bitcoin Ethereum

Crypto mining malware tau nkag mus rau ntau pua txhiab lub khoos phis tawj thoob ntiaj teb txij li xyoo 2019, feem ntau masquerading li cov kev pabcuam raug cai xws li Google Txhais lus, kev tshawb fawb tshiab tau pom. 

Hauv tsab ntawv tshaj tawm hnub Monday los ntawm Check Point Research (CPR), pab pawg tshawb fawb rau Asmeskas-Israeli cybersecurity tus muab kev pabcuam, Check Point Software Technologies tau tshaj tawm cov malware tau ua. ya nyob rau hauv lub radar rau xyoo, ua tsaug ib feem rau nws insidious tsim uas ncua kev txhim kho lub crypto mining malware rau lub lis piam tom qab pib software download.

Txuas mus rau tus tsim software hais lus Turkish uas tau thov kom muab "dawb thiab muaj kev nyab xeeb software," qhov program malware invas PCs los ntawm cov duab cuav ntawm cov apps nrov xws li YouTube Music, Google Txhais thiab Microsoft Txhais Lus.

Thaum lub sijhawm ua haujlwm txheej txheem ua rau cov txheej txheem kev teeb tsa malware, nws tsis tu ncua mus dhau ob peb kauj ruam dhau ob peb hnub, xaus nrog Monero stealth (XMR) crypto mining lag luam raug teeb tsa.

Lub tuam txhab kev ruaj ntseg cybersecurity tau hais tias Turkish-based crypto miner hu ua 'Nitrokod' tau kis cov tshuab thoob plaws 11 lub tebchaws.

duab

Raws li CPR, nrov software rub tawm qhov chaw xws li Softpedia thiab Uptodown muaj cov ntaub ntawv pov thawj muaj nyob rau hauv lub npe tshaj tawm Nitrokod INC. 

Qee qhov kev pab cuam tau rub tawm ntau pua txhiab zaus, xws li cov duab cuav ntawm Google Txhais lus ntawm Softpedia, uas txawm tias muaj ze li ib txhiab kev tshuaj xyuas, qhov nruab nrab ntawm lub hnub qub tau qhab nia ntawm 9.3 tawm ntawm 10, txawm tias Google tsis muaj lub desktop ua haujlwm. version rau qhov program ntawd.

Screenshot los ntawm Check Point tshawb fawb ntawm qhov liam fake app

Raws li Check Point Software Technologies, muab lub desktop version ntawm cov apps yog ib feem tseem ceeb ntawm cov kws txuj ci dag.

Feem ntau cov kev pab cuam muab los ntawm Nitrokod tsis muaj lub desktop version, ua rau cov software cuav txaus siab rau cov neeg siv uas xav tias lawv tau pom ib qho program tsis muaj nyob txhua qhov chaw.

Raws li Maya Horowitz, tus lwm thawj ntawm kev tshawb fawb ntawm Check Point Software, cov malware-riddled fakes kuj muaj "los ntawm kev tshawb nrhiav hauv web yooj yim."

"Dab tsi txaus siab rau kuv yog qhov tseeb tias cov software tsis zoo yog nrov heev, tseem tau mus nyob rau hauv lub radar ntev heev."

Raws li kev sau ntawv, Nitrokod's imitation Google Translate Desktop program tseem yog ib qho ntawm cov txiaj ntsig tshawb fawb tseem ceeb.

Tsim pab kom tsis txhob muaj kev tshawb nrhiav

Cov malware tshwj xeeb yog qhov tsis yooj yim los txheeb xyuas, txawm tias thaum tus neeg siv tau tshaj tawm cov software sham, lawv tseem tsis muaj qhov ntse dua li cov apps cuav kuj tuaj yeem ua raws li cov haujlwm uas raug cai muab.

Feem ntau ntawm cov hacker cov kev pab cuam tau yooj yim tsim los ntawm cov nom lub vev xaib siv Chromium-raws li lub moj khaum, tso cai rau lawv nthuav tawm cov haujlwm ua haujlwm nrog cov malware yam tsis tau tsim lawv los ntawm hauv av.

Related: 8 kev dag ntxias crypto txiaj hauv Twitter tam sim no

Txog tam sim no, ntau tshaj li ib puas txhiab tus neeg thoob plaws tebchaws Ixayees, Lub Tebchaws Yelemees, Tebchaws Askiv, Tebchaws Meskas, Sri Lanka, Cyprus, Australia, Tim Nkij teb chaws, Qaib ntxhw, Mongolia thiab Poland tau poob rau cov neeg phem.

Txhawm rau kom tsis txhob tau txais kev dag ntxias los ntawm cov malware no thiab lwm tus nyiam nws, Horowitz, hais tias ob peb lub tswv yim kev nyab xeeb yooj yim tuaj yeem pab txo qhov kev pheej hmoo.

"Ceev faj txog qhov zoo sib xws, sau ntawv yuam kev hauv cov vev xaib, thiab cov neeg xa email tsis paub. Tsuas yog rub tawm cov software nkaus xwb los ntawm cov ntawv tso cai, paub cov tshaj tawm lossis cov neeg muag khoom thiab xyuas kom koj qhov kawg kev nyab xeeb yog mus txog hnub thiab muab kev tiv thaiv zoo. "