Fun

News Feed - 2023-08-25 01:08:36

Martin Young4 hours agoWinRAR patches zero-day bug that targeted stock and crypto tradersAccording to cybersecurity firm Group-IB, weaponized ZIP file archives were being shared on crypto trading forums, with each one containing a nasty surprise.999 Total views18 Total sharesListen to article 0:00NewsJoin us on social networksThe developers behind file compression software WinRAR have patched a zero-day vulnerability that allowed hackers to install malware onto unsuspecting victims" computers, enabling them to hack into their crypto and stock trading accounts.


On Aug. 23, Singapore-based cybersecurity firm Group-IB reported a zero-day vulnerability in the processing of the ZIP file format by WinRAR.


The zero-day vulnerability tracked as CVE-2023-38831 was exploited for approximately four months, allowing hackers to install malware when a victim clicked on files in an archive. The malware would then allow hackers to breach online crypto and stock trading accounts, according to the report.


Using the exploit, the threat actors were able to create malicious RAR and ZIP archives that displayed seemingly innocent files such as JPG images or PDF text documents. These weaponized ZIP archives were then distributed on trading forums targeting crypto traders, offering strategies such as “best Personal Strategy to trade with Bitcoin.”“Once extracted and executed, the malware allows threat actors to withdraw money from broker accounts. This vulnerability has been exploited since April 2023.”


The report confirmed that the malicious archives found their way onto at least eight public trading forums infecting at least 130 devices, however, the victim"s financial losses were unknown.WinRar exploit infection chain. Source: Group-IB


On execution, the script launches a self-extracting (SFX) archive that infects the target computer with various malware strains, such as the DarkMe, GuLoader and Remcos RAT.


These provide the attacker with remote access privileges on the infected computer. DarkMe malware has previously been used in crypto and financially motivated attacks.


The researchers notified RARLABS which patched the zero-day vulnerability in WinRAR version 6.23, released on Aug. 2.


Related:Crypto investors under attack by new malware, reveals Cisco Talos


In August, smartphone giant BlackBerry identified several malware families that actively aimed to hijack computers to mine or steal cryptocurrencies.


The same month also revealed a newly discovered remote access tool called HVNC (Hidden Virtual Network Computer) that can enable hackers to compromise Apple operating systems was found on sale on the dark web.


Collect this article as an NFTto preserve this moment in history and show your support for independent journalism in the crypto space.


Magazine:Should crypto projects ever negotiate with hackers? Probably# Business# Malware# Hackers# Cybercrime# CybersecurityAdd reactionAdd reactionRead moreHow to send and receive payments on the Lightning NetworkOpinion: Why did Bitget seize more than $200,000 of my money?The future of BTC mining and the Bitcoin halving

News Feed

More On-Ramps, Liquidity, Options: Why Bitcoin’s Next Bull Run Will Be Different
More On-Ramps, Liquidity, Options: Why Bitcoin"s Next Bull Run Will Be Different Bitcoin’s next bull run will look very different from the last one. In 2017, BTC took the e
Crypto Expert Discloses ‘Hidden Altcoin Gem’ With 1,900% Upside
Este artículo también está disponible en español. In his latest video analysis titled “I Just APED Into This Hidden RWA Altcoin Gem! [20x Potential],” promine
Why is Solana's Dogwifhat (WIF) memecoin crashing?
Yashu Gola7 hours agoWhy is Solana"s Dogwifhat (WIF) memecoin crashing?WIF price risks declining by another 48% due to the formation of a classic bearish reversal setup.1636 Total views29 Total sharesListen to article 0:
Nigerian President Barred From Extending Old Naira Banknote Demonetization Deadline
Nigerian President Barred From Extending Old Naira Banknote Demonetization Deadline With just a few days left before the old naira banknotes are demonetized on Feb. 10 as scheduled
Binance US Announces Dogecoin Listing
Crypto-lands favorite meme-coin is hitting another U.S.-based exchange. Binance.US has announced Thursday the listing of dogecoin under the DOGE/USDT trading pair. For now, only dep
Spanish Treasury Secretary Says Cryptocurrencies Carry a ‘Risk of Default’, Repeats Bank of Spain’s Lack of Regulation Rhetoric
Spanish Treasury Secretary Says Cryptocurrencies Carry a "Risk of Default", Repeats Bank of Spain"s Lack of Regulation Rhetoric The government of Spain continues
Turner Wright2 hours agoFormer FTX engineering director faces up to 75 years in prison following guilty pleaNishad Singh’s testimony was seemingly part of the prosecutors’ strategy to establish Sam Bankman-Fried as b
Solana To New ATH Before Christmas – Analyst Expects $300 Soon
Este artículo también está disponible en español. Solana (SOL) has faced a 23% retrace after hitting new all-time highs at $264, testing the resilience of bullish momentu
Trezor to simplify self-custody with onboarding sessions and new wallet
Helen Partz1 minute agoTrezor to simplify self-custody with onboarding sessions and new walletSelf-custody raises concerns about the burden of holding the private key, which Trezor wants to solve with the help of a dedic
Cryptocurrency Exchanges Are Fighting to Escape Binance’s Shadow
Cryptocurrency Exchanges Are Fighting to Escape Binance’s Shadow It’s impossible to assess the cryptocurrency landscape without considering Binance. It looms large over t
Moonpay Raises $555 Million in First Funding Round
Moonpay Raises $555 Million in First Funding Round Moonpay, a cryptocurrency payments service provider, has raised $555 million during its first funding round. Led by Tiger Global
Leading European Tire Retreader Vaculug to Accept Crypto Payments
Leading European Tire Retreader Vaculug to Accept Crypto Payments Vaculug, a British company that brands itself as Europe’s largest independent tire retreader, will now acce