Kaspersky discovers cryptocurrency Trojan
Written by Chris Lemmon
Kaspersky Lab researchers have discovered a new CryptoShuffler Trojan which steals cryptocurrencies from a user’s wallet by replacing their address with its own in the device’s clipboard.
To date, criminals have already succeeded in attacking Bitcoin wallets, stealing 23 BTC, which is equivalent to almost $140,000. The total amount stolen from other wallets ranges from a few dollars to several thousands.
The Trojan’s mechanism capitalises on the common transaction process used by most cryptocurrency users. It monitors the infected device’s clipboard and replaces the user’s wallet address with one owned by the malware creator when the user attempts to make a payment.
Sergey Yunkovsky, malware analyst at Kaspersky Lab, commented: “Cryptocurrency is not tomorrow's technology anymore. It is becoming part of our daily lives, actively spreading around the world, becoming more available for users, and a more appealing target for criminals.
“Lately, we’ve observed an increase in malware attacks targeted at different types of cryptocurrencies, and we expect this trend to continue. So users considering cryptocurrency investments should think about protecting their investments carefully.”