Bitcoin Forum

What is Cryptocurrency attacks
Cryptojacking is essentially the exploitation of your CPU's labor, where threat actors leverage a victim's CPU to mine cryptocurrency. ... Threat actors then monitor these wallets' transactions and perform a combined analysis of different addresses on the blockchain to uncover the identity of the entity behind each wallet.
What is Bitcoin attack
cryptocurrency miner or group of miners gains control of more than 50% of a network's blockchain. Such attacks are one of the most significant threats for people who use and buy cryptocurrencies.

Cryptocurrency Attacks To Be Aware Of In 2021

It’s been a pretty big year so far for cryptocurrency. After it reached an all-time high in April 2021, new investors desperate not to miss out on the digital gold rush flocked to the exchanges to buy Bitcoin and altcoins. Cryptocurrencies’ current total market cap sits just above $1.7 trillion. The cryptocurrency exchange Coinbase recently launched an IPO, India has reversed a ban on cryptocurrencies, and ransomware groups continue to demand payment in anonymity-based cryptocurrency. I’ve even seen advertisements for Bitcoin on public transport during my commute.

The rush to buy has meant that many new to the cryptocurrency scene are investing without fully understanding how the currencies work. This has left the door open for cybercriminals to scam, steal, and otherwise exploit this lack of knowledge. With the cryptocurrency space showing no signs of slowing down, we review the most common attack vectors cybercriminals have discussed on cybercriminal forums in 2021, mitigations for these techniques, and examine how threat actors are adapting proven methods to target this new wave of users.


WHAT ARE THE MOST COMMONLY DISCUSSED CRYPTO ATTACK VECTORS?
The most common vectors discussed across cybercriminal forums in recent months are:

Reverse proxy phishing
 *Cryptojacking
 *Dusting
 *Clipping
Reverse proxy phishing is a sort of domain-spoofing Man-in-the-Middle (MitM) attack whereby an attacker secretly “listens” to traffic between two unsuspecting parties. This technique is used to bypass two-factor authentication (2FA).

Cryptojacking is essentially the exploitation of your CPU’s labor,  where threat actors leverage a victim’s CPU to mine cryptocurrency. Marx would be livid!

Cryptocurrency “dusting” is deanonymizing your crypto wallet by sending tiny amounts of crypto “dust” to multiple wallets. Threat actors then monitor these wallets’ transactions and perform a combined analysis of different addresses on the blockchain to uncover the identity of the entity behind each wallet.

Cryptocurrency “clipping” is stealing cryptocurrency in the process of a transaction through the use of malware that automatically substitutes the intended wallet address with the threat actor’s wallet address.

REVERSE-PROXY PHISHING AND MITIGATIONS
It’ll come as no surprise that cybercriminals are just as likely to employ phishing techniques to steal money from your crypto wallet as they are to drain your bank account. However, as many cryptocurrency platforms strongly encourage the use of two-factor authentication (2FA) methods such as authenticator apps, gaining access to your crypto accounts isn’t so simple. Authenticator apps mean that threat actors can’t just input credentials obtained during a phishing campaign to access your wallet. Nor can they employ SIM swapping techniques to intercept one-time passcodes (OTPs) delivered via SMS. This is where reverse proxy phishing, also known as “session hijacking,” comes into play.


Cybercriminal vendor advertising rates for reverse proxy phishing services targeting high-profile platforms

https://i.imgur.com/waog6jK.jpg

1.The victim visits a fake domain they likely found in a spam email, e.g. www.c0inbase[.]com/login
2. This fake domain is hosted on a malicious reverse proxy server that sits in between the victim and the server hosting the real login page. The reverse proxy server can monitor and control any traffic passing through.
3. The reverse proxy server retrieves the legitimate login page and loads a copy for the victim. Fraudulently obtained SSL certificates ensure the victim’s browser does not detect that the fake webpage is a copy.
4. The victim enters their login credentials on the fake page and is asked to perform two-factor authentication.
5. The malicious server relays these credentials and 2FA code to the real login page on the real server.
6. The real server verifies the credentials and, if correct, grants account access to the reverse proxy server, which it thinks is the victim client. The reverse proxy server can now control the session and cut the victim out – hence the term “session hijacking.” The attacker can now send any cryptocurrency to their own wallet.

https://www.digitalshadows.com/blog-and-research/cryptocurrency-attacks-to-be-aware-of-2021/
https://www.google.com/search?q=what+is+cryptocurrency+attack&oq=what&aqs=chrome.0.69i59l3j69i57j69i61.1795j0j4&client=ms-android-oppo-rvo2&sourceid=chrome-mobile&ie=UTF-8


This Content not mine but I'll make This Thread in order to be aware of Cryptocurrency attacks

Don't forget the fake popup messages asking you to update your Bitcoin wallet. A few years back someone lost 1400 bitcoins after updating his Electrum wallet via a popup message.

It is best practise to keep your coins in your own wallet e.g. Trezor, but you need to learn how it works, and all the scams to avoid losing your coins.

https://www.zdnet.com/article/bitcoin-wallet-trick-has-netted-criminals-more-than-22-million/ (https://www.zdnet.com/article/bitcoin-wallet-trick-has-netted-criminals-more-than-22-million/)

That is why do not Trust what you can see on messages before doing something you must undergo a research on it so that you cannot be scammed easily.

You should be always checking the Links first that you want to click before you click them or doing anything !
Specially here on the Forum we got that in in the past very often that the Links you see are not the same as that was posted .

You can check this thread out here : Guide and advice for new Users before you Download anything from the Forum ! (https://bitcointalk.org/index.php?topic=5167236.msg51891741#msg51891741)

This should have changed to Guide and advice for new users before downloading something from the internet. Well, it's not just the forum that will redirect you to a link and download a file or something. I even came across a site where I only search for more knowledge about a particular topic and suddenly a new window opened and automatically download a file I didn't intentionally download.

For Electrum, this old thread should be of help. https://bitcointalk.org/index.php?topic=5178675.0
It's kind of old version of the software, but note that the software should be just downloaded only from its official site.

Phishing and social engineering is a hell out effective to lure and scam people in cryptocurrency, its the easiest and cost effective for them as well.
Even non-newbie could be fooled as well, that's why it's always good to have knowledge in such cases to prevent future attacks and losses.

Thousands of scammers promote their products/campaign, they give you a link then ask for your personal information so that they can easily track you or they can steal your money.
The best thing we can do is don't open a untrusted link. You must read the feedback or comments before you click.

---

Did you saw my references?


[moderator's note: consecutive posts merged]

I follow known project hacks in this thread
DeFi hacks [history]
https://bitcointalk.org/index.php?topic=5267124

2020 crypto project hacks report
https://decrypt.co/54128/hackers-stole-3-8-billion-in-cryptocurrency-hacks-in-2020
Hackers Stole $3.8 Billion in Cryptocurrency Hacks in 2020
it will be interesting to compare the results with 2021

That is a great topic but there are several more topics for newbies to read, learn and secure their accounts as well as cryptocurrency wallets better. Must-read resources

• Crypto Security: Passwords and Authentication - Livestream aantonop (https://www.youtube.com/watch?v=m8jlnZuV1i4)
• Good topics on security and privacy (https://bitcointalk.org/index.php?topic=5239098.0)

Bitcoin transactions are irreversible and when you lose your coins, you can not reverse transactions to get your coins back.

• Not your keys, not your coins: https://notyourkeys.org/

Seriously there are lot's of scammers now and they are looking for every opportunity to scam people I think everybody should be careful now to secure there wallet to avoid hack. You should avoid visiting sites anyhow and inputting your details in unknown or unsecure site. Everybody should try there possible best to secure there wallet to avoid scammers because must people you meet online are just thinking about how they can steal from you.

The cryptojacking is common if you're the type of person that likes to download from unofficial websites for the apps that you use and you want to install. It is very important to be aware of this because it is increasing the CPU usage upon installation of that app and that makes the life of your CPU lesser if it's being used in mining by these jackers. It is still happening today and that's why licensed apps are the way to avoid this or if it's free, download from the official websites.

This links can help newbies to be aware

The best thing you can do is secure your wallets do not trust anybody even your closet friends . Do not post anything about you Identity so that your chance to be scammed is lesser.


Yes your right nowadays many scammers around us they are trying their best to convince people to give there want they want, I don't know if this people have conscience.

You are right , there so much more helpful Topics and Threads for new Users so that they can get some Information !
But i guess the most or a lot of new Users are just to lazy to read all the good Content that is written there.
Mostly mistakes are made and done because things are not readed correctly.
Read --> Learn --> Experience