Fun

News Feed - 2023-08-25 01:08:36

Martin Young4 hours agoWinRAR patches zero-day bug that targeted stock and crypto tradersAccording to cybersecurity firm Group-IB, weaponized ZIP file archives were being shared on crypto trading forums, with each one containing a nasty surprise.999 Total views18 Total sharesListen to article 0:00NewsJoin us on social networksThe developers behind file compression software WinRAR have patched a zero-day vulnerability that allowed hackers to install malware onto unsuspecting victims" computers, enabling them to hack into their crypto and stock trading accounts.


On Aug. 23, Singapore-based cybersecurity firm Group-IB reported a zero-day vulnerability in the processing of the ZIP file format by WinRAR.


The zero-day vulnerability tracked as CVE-2023-38831 was exploited for approximately four months, allowing hackers to install malware when a victim clicked on files in an archive. The malware would then allow hackers to breach online crypto and stock trading accounts, according to the report.


Using the exploit, the threat actors were able to create malicious RAR and ZIP archives that displayed seemingly innocent files such as JPG images or PDF text documents. These weaponized ZIP archives were then distributed on trading forums targeting crypto traders, offering strategies such as “best Personal Strategy to trade with Bitcoin.”“Once extracted and executed, the malware allows threat actors to withdraw money from broker accounts. This vulnerability has been exploited since April 2023.”


The report confirmed that the malicious archives found their way onto at least eight public trading forums infecting at least 130 devices, however, the victim"s financial losses were unknown.WinRar exploit infection chain. Source: Group-IB


On execution, the script launches a self-extracting (SFX) archive that infects the target computer with various malware strains, such as the DarkMe, GuLoader and Remcos RAT.


These provide the attacker with remote access privileges on the infected computer. DarkMe malware has previously been used in crypto and financially motivated attacks.


The researchers notified RARLABS which patched the zero-day vulnerability in WinRAR version 6.23, released on Aug. 2.


Related:Crypto investors under attack by new malware, reveals Cisco Talos


In August, smartphone giant BlackBerry identified several malware families that actively aimed to hijack computers to mine or steal cryptocurrencies.


The same month also revealed a newly discovered remote access tool called HVNC (Hidden Virtual Network Computer) that can enable hackers to compromise Apple operating systems was found on sale on the dark web.


Collect this article as an NFTto preserve this moment in history and show your support for independent journalism in the crypto space.


Magazine:Should crypto projects ever negotiate with hackers? Probably# Business# Malware# Hackers# Cybercrime# CybersecurityAdd reactionAdd reactionRead moreHow to send and receive payments on the Lightning NetworkOpinion: Why did Bitget seize more than $200,000 of my money?The future of BTC mining and the Bitcoin halving

News Feed

Biggest Movers: ETC, NEAR at 3-Month Lows on Tuesday
Biggest Movers: ETC, NEAR at 3-Month Lows on Tuesday Ethereum classic remained close to a three-month low in today’s session, as the token continued to extend recent decline
BODEN memecoins briefly spike after Hunter Biden guilty verdit
Jesse Coghlan8 hours agoBODEN memecoins briefly spike after Hunter Biden guilty verditMisspelled memecoins referencing the U.S. first family surged after President Biden’s son was convicted of lying about being a drug
Tron’s Bitcoin layer-2 plan could see ’wrapped’ USDT flow into Bitcoin
Brayden Lindrea4 hours agoTron’s Bitcoin layer-2 plan could see ’wrapped’ USDT flow into BitcoinIn February, Tron founder Justin Sun announced it was working on a Bitcoin layer-2 solution to intertwine its tokens w
Bank of England’s Governor Warns About Crypto Amid Bloodbath — ‘Be Prepared to Lose All Your Money’
Bank of England"s Governor Warns About Crypto Amid Bloodbath — "Be Prepared to Lose All Your Money" The governor of the Bank of England, Andrew Bailey, has reiterated his warning
Amaka Nwaokocha10 hours agoCoinbase seeks dismissal of SEC suit, claims extraordinary abuse of processThe motion to dismiss argues that even if all the allegations in the lawsuit are true, the plaintiff does not have a v
Nobel Laureate Ben Bernanke Blasts Cryptocurrencies, Says Tokens ‘Have Not Been Shown to Have Any Economic Value at All’
Nobel Laureate Ben Bernanke Blasts Cryptocurrencies, Says Tokens "Have Not Been Shown to Have Any Economic Value at All" Ben Bernanke, former chairman of the Federal Reserve and al
Safeguarding Investments: Cryptimi.com Offers the Solution
Safeguarding Investments: Cryptimi.com Offers the Solution Anyone venturing into the digital currency scene understands the significance of performing analyses to evaluate potent
Decentralized Indexing Provider Aleph.im Launches Serum Markets Analytics
Decentralized Indexing Provider Aleph.im Launches Serum Markets Analytics Crypto proponents and market observers can now gain insight into Solana’s and Serum’s liquid
Crypto Assets: Securities or Commodities? Commissioner Explains How They Are Regulated in US
Crypto Assets: Securities or Commodities? Commissioner Explains How They Are Regulated in US A commissioner with the U.S. Commodity Futures Trading Commission (CFTC) has detailed h
Savannah Fortis16 hours agoSony Network invests in Japanese Web3 startup to spur mass adoptionThe deal includes an investment of $3.5 million, a Sony executive moving to Startale Labs and collaboration on new Web3 tools
Helen Partz1 hour agoBinance Australia offices reportedly searched by local regulatorBinance said it is cooperating with Australian regulators to meet local regulatory requirements amid reports of office searches.1084 To
New SEC Filings Give the Impression US Regulators Approved a Bitcoin Futures ETF
New SEC Filings Give the Impression US Regulators Approved a Bitcoin Futures ETF The price of bitcoin jumped over 8% during the last 24 hours after a number of documents stemming f