Fun

News Feed - 2023-08-25 01:08:36

Martin Young4 hours agoWinRAR patches zero-day bug that targeted stock and crypto tradersAccording to cybersecurity firm Group-IB, weaponized ZIP file archives were being shared on crypto trading forums, with each one containing a nasty surprise.999 Total views18 Total sharesListen to article 0:00NewsJoin us on social networksThe developers behind file compression software WinRAR have patched a zero-day vulnerability that allowed hackers to install malware onto unsuspecting victims" computers, enabling them to hack into their crypto and stock trading accounts.


On Aug. 23, Singapore-based cybersecurity firm Group-IB reported a zero-day vulnerability in the processing of the ZIP file format by WinRAR.


The zero-day vulnerability tracked as CVE-2023-38831 was exploited for approximately four months, allowing hackers to install malware when a victim clicked on files in an archive. The malware would then allow hackers to breach online crypto and stock trading accounts, according to the report.


Using the exploit, the threat actors were able to create malicious RAR and ZIP archives that displayed seemingly innocent files such as JPG images or PDF text documents. These weaponized ZIP archives were then distributed on trading forums targeting crypto traders, offering strategies such as “best Personal Strategy to trade with Bitcoin.”“Once extracted and executed, the malware allows threat actors to withdraw money from broker accounts. This vulnerability has been exploited since April 2023.”


The report confirmed that the malicious archives found their way onto at least eight public trading forums infecting at least 130 devices, however, the victim"s financial losses were unknown.WinRar exploit infection chain. Source: Group-IB


On execution, the script launches a self-extracting (SFX) archive that infects the target computer with various malware strains, such as the DarkMe, GuLoader and Remcos RAT.


These provide the attacker with remote access privileges on the infected computer. DarkMe malware has previously been used in crypto and financially motivated attacks.


The researchers notified RARLABS which patched the zero-day vulnerability in WinRAR version 6.23, released on Aug. 2.


Related:Crypto investors under attack by new malware, reveals Cisco Talos


In August, smartphone giant BlackBerry identified several malware families that actively aimed to hijack computers to mine or steal cryptocurrencies.


The same month also revealed a newly discovered remote access tool called HVNC (Hidden Virtual Network Computer) that can enable hackers to compromise Apple operating systems was found on sale on the dark web.


Collect this article as an NFTto preserve this moment in history and show your support for independent journalism in the crypto space.


Magazine:Should crypto projects ever negotiate with hackers? Probably# Business# Malware# Hackers# Cybercrime# CybersecurityAdd reactionAdd reactionRead moreHow to send and receive payments on the Lightning NetworkOpinion: Why did Bitget seize more than $200,000 of my money?The future of BTC mining and the Bitcoin halving

News Feed
London’s ‘Joe Rogan’ and crypto advocate Brian Rose makes bid for mayor
Robert D. Knight10 hours agoLondon’s ‘Joe Rogan’ and crypto advocate Brian Rose makes bid for mayorThe former Wall Street and City of London banker is making his second bid to become mayor of London.4369 Total view
2024-04-30 22:32 PM
Games Coins, Defi Tokens, Metaverse Assets Rise Above Market Downturn With Double-Digit Gains
Games Coins, Defi Tokens, Metaverse Assets Rise Above Market Downturn With Double-Digit Gains While digital currencies like bitcoin and ethereum lost roughly 10% in value during th
2021-11-18 10:30 AM
WBTC address poisoner sends nearly all funds back to victim after negotiations
Christopher Roark2 hours agoWBTC address poisoner sends nearly all funds back to victim after negotiationsBlockchain data shows that nearly 23,000 ETH was transferred into the victim’s account after negotiations opened
2024-05-11 06:10 AM
China Central Bank Official: Digital Yuan Should Have ‘Controllable Anonymity’
China’s proposed new stablecoin project should strike a balance between protecting privacy and regulatory enforcement, China’s Digital Currency Research Institute said Tuesday.
2019-11-13 02:15 AM
Ripple backs Deaton with $1M donation in senate race against Warren
Derek Andersen2 hours agoRipple backs Deaton with $1M donation in senate race against WarrenRipple has the back of one its strongest supporters in his attempt to unseat powerful Senate crypto foe Elizabeth Warren.2099 To
2024-07-17 06:10 AM
Prashant Jha11 hours agoBitcoin, Ether price slump leads to crypto bloodbath with $1B in liquidationsThe liquidation event saw one trader lose $55.9 million, while another saw $10 million worth of hedged positions get li
2023-08-18 21:55 PM
Alibaba Suspends Sale of Cryptocurrency Mining Hardware on Its Platform
Alibaba Suspends Sale of Cryptocurrency Mining Hardware on Its Platform Alibaba, the Chinese e-commerce giant, has announced it will no longer allow the sale of cryptocurrency mini
2021-09-29 17:30 PM
Japanese Pop Star Talks About Her Facet as Crypto Investor — J-Pop Band Releases NFT Trading Cards
Japanese Pop Star Talks About Her Facet as Crypto Investor — J-Pop Band Releases NFT Trading Cards Asian showbiz stars have been actively speaking about crypto
2021-02-04 07:30 AM
Cointelegraph Innovation Circle9 hours ago8 ways crypto companies can improve their financial compliance in the USAbsent clear, comprehensive regulatory guidance in the U.S., crypto companies would be wise to shore up th
2023-07-26 00:00 AM
Russia’s Digital Ruble Integrated Into Banking App
Russia’s Digital Ruble Integrated Into Banking App VTB has become the first Russian bank to add the digital ruble to its mobile application. The integration is currently being te
2022-11-13 06:30 AM
Poloniex, Bittrex Named in Lawsuit Involving the Alleged Tether-Fueled Crypto Pump
Poloniex, Bittrex Named in Lawsuit Involving the Alleged Tether-Fueled Crypto PumpOn April 3, the cryptocurrency community learned about 11 class-action lawsuits against various exe
2020-06-09 08:58 AM
Goldman Sachs Sees Higher US Recession Risk Citing Concerns the Fed Will ‘Respond Forcefully’ to High Inflation
Goldman Sachs Sees Higher US Recession Risk Citing Concerns the Fed Will "Respond Forcefully" to High Inflation Goldman Sachs’ economists now see an increased risk of a U.S.
2022-06-22 10:30 AM