Windows software pirates start losing their BTC investments in their wallets to cryptobot malware which harvested sensitive information from crypto wallets so let’s find out more in our latest Bitcoin scam news.
Windows software pirates that are looking for a free copy of the windows are running in a wall of malware activation tools that are emptying their crypto wallets. According to security research company Red Canary, the infections of systems with the Cryptobot malware were traced back to a fake KMSPico installer which is used by pirates to activate full features of Microsoft Windows and Office products without actually owning the license key.
Since the security tools block KMSPico as an unwanted program, the software came with instructions to disable the antivirus and anti-malware software which essentially allowed Cryptobot to run on the system. Once into the system, Cryptobot scours it for credentials and other sensitive info like crypto wallets. The list of wallets at risk from Cryptobot is quite expensive as it includes some of the well-known ones like Exodus, Monero, Electrum, Ledger Live, and other applications on the web browsers. Since the KMSPico installer leverages Windows Key Management services, the legitimate technology used for licensing on enterprise networks and some IT departments that have legitimate licenses, reportedly used the tool to activate their systems thus corrupting their systems with the malware.
New malware analysis from @ForensicITGuy: #RCIntel recently analyzed a sample of Cryptbot and traced it back to a fake KMSPico installer. Here's what to look out for. https://t.co/Msj1M4cKOP
— Red Canary (@redcanary) December 2, 2021
Given the lucrative potential rewards that are involved in crypto, malware is the most commonly used tool to steal crypto. Scheme ranged from crypto-mining malware which entangles the system resources to fake crypto apps that are designed to steal the private keys of the users. In one case, a man sued the parents of two teenagers who reportedly used malware to steal $800,000 worth of BTC. With the KMSPico installed, taking the shortcuts to get access to windows software without buying a license, could turn out to be quite expensive for crypto users.
Speaking of malware, we talked recently about A new monero malware is targeting enterprise networks according to the new report from cybersecurity company Sophos that detailed a new variant of the Tor2Mine malware. The new Monero malware installs a monero crypto-miner which is quite aggressive compared to other variants. In most cases you would need to update your antivirus software otherwise this miner could enter your network and eat it up.
DC Forecasts is a leader in many crypto news categories, striving for the highest journalistic standards and abiding by a strict set of editorial policies. If you are interested to offer your expertise or contribute to our news website, feel free to contact us at [email protected]
Discussion about this post