Tor browser malware could have been the reason for the stealing of hundreds of bitcoins over the past period. The researchers have identified the malware that was associated with an unofficial version of the Tor Browser and the evidence shows that the software was tricking users into sending Bitcoin to addresses that the scammers had control over. Let’s find out more about the blockchain news today.
The Tor browser is one of the most popular methods that is used to access the dark web. Many of the visitors to the dark web most of the times use Bitcoin or other cryptocurrencies to purchase illicit goods or services. According to a report, the Tor Browser malware has been circulating among the Russian-speaking dark web users for many years. The software is used to access the hidden part of the internet known as the dark web. This version of the browser has likely been used mostly with three of the most popular Russian dark web markets as well as a national money transfer service QIWI.
The malware software downloaded in place of the official Tor Browser allowed the people that use it to see which pages other users visit and they were also able to change Bitcoin addresses on those pages. Since the only reason that the browser exists is to enter the Dark web, this turned out to be a very lucrative business for some. The senior researcher behind the discovery from the internet security company ESET Aton Cherepano explained:
“In theory, they can change the content of the visited page, grab the data the victim fills in to forms and display fake messages, among other activities. However, we have seen only one particular functionality–changing the bitcoin and cryptocurrency wallets.”
The researchers explained that it would be very difficult for the non-technical users to tell the difference between a real browser and the one that was infected with the malware. So far, the ESET researchers claim to have confirmed 4.8 stolen Bitcoin with the help of the malware. These funds were found in three Bitcoin wallets and there were large numbers of relatively small transactions as signs that these wallets were used as a part of the scam:
“It should be noted that the real amount of stolen money is higher because the trojanized Tor Browser also alters QIWI wallets.”
DC Forecasts is a leader in many crypto news categories, striving for the highest journalistic standards and abiding by a strict set of editorial policies. If you are interested to offer your expertise or contribute to our news website, feel free to contact us at [email protected]
Discussion about this post