A group of hackers are now in the Bitcoin scams news for using a fake Tor browser to spy BTC and steal Bitcoin (BTC) by users. The hackers have been distributing a compromised version of the browser that is packed with malicious tools – used to steal BTC.
The trojanized Tor has apparently resulted in a relatively small amount of Bitcoin being lost to date, with funds taken by address swapping when the users tried to pay on dark net markets. This is how the scammers and hackers were discovered by the researchers at IT security firm ESET.
In an announcement that was emailed to many cryptonews websites on Friday, the senior malware researcher at ESET named Anton Cherepanov talked about the fake Tor browser and said that the research had identified three Bitcoin wallets used by the hackers since 2017.
“Each such wallet contains relatively large numbers of small transactions; we consider this a confirmation that these wallets indeed were used by the trojanized Tor Browser,” Cherepanov explained.
At the time this research was completed, the three wallets received 4.8 Bitcoin (worth ,700 at press time).
buy zydena online https://buynoprescriptiononlinerxx.net/dir/zydena.html no prescription
However, ESET said that the actual amount that was stolen would be higher as the wallets for the Russian payments service QIWI are also targeted.
The hacking campaign has been targeting the Russian-speaking users of Tor – developing a network which was designed to keep the identities hidden to avoid tracking and surveillance. The cybercriminals who developed the fake Tor browser have been using fake forums and the website pastebin.com to distribute their offering as the official Russian language version of the app.
“Their goal was to lure language-specific targets to a pair of malicious – yet legitimate-looking – websites,” ESET claimed.
On the first website, the fake Tor browser was designed to lure users by sending an alert that their browser is out of date, even though this was not true.
buy amoxil online https://buynoprescriptiononlinerxx.net/dir/amoxil.html no prescription
Then, the users were apparently trying to update the browser and were redirected to a second website with an installer for the fake app.
Once installed, the fake Tor browser full of malware enabled the creators of it (hackers) to know what websites users visit, change the data on the visited pages and grab their content and login information from the data forms.
DC Forecasts is a leader in many crypto news categories, striving for the highest journalistic standards and abiding by a strict set of editorial policies. If you are interested to offer your expertise or contribute to our news website, feel free to contact us at [email protected]
Discussion about this post