Bitcoin Forum
September 18, 2019, 09:05:17 PM *
News: Latest Bitcoin Core release: 0.18.1 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: [BEWARE] Glupteba Malware now uses Bitcoin blockchain  (Read 161 times)
dkbit98
Sr. Member
****
Offline Offline

Activity: 532
Merit: 340


First 100% Liquid Stablecoin Backed by Gold


View Profile WWW
September 06, 2019, 01:03:33 AM
Last edit: September 06, 2019, 08:39:45 AM by dkbit98
Merited by bones261 (2), Daniel91 (1), DdmrDdmr (1), tranthidung (1), Coolcryptovator (1), SuperTA (1)
 #1










As TrendMicro reported
Glupteba malware has 'mutated' and now uses Bitcoin transactions to target browsers and routers, and bypass antivirus software.

sources:
https://blog.trendmicro.com/trendlabs-security-intelligence/glupteba-campaign-hits-network-routers-and-updates-cc-servers-with-data-from-bitcoin-transactions/
https://decrypt.co/8958/malware-using-bitcoin-blockchain-to-target-victims?utm_content=buffer7fd6f&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer
https://www.msn.com/en-us/news/technology/nasty-glupteba-malware-uses-bitcoin-blockchain-to-keep-itself-alive/ar-AAGNFx9


HOW TO PROTECT YOURSELF?

- DON'T CLICK ANY SUSPICIOUS LINKS

- DON'T DOWNLOAD ANY UNKNOWN FILES

- DON'T OPEN OR REPLY TO ANY UNKNOWN EMAILS

- INSTALL ANTIVIRUS SECURITY SOFTWARE

- UPDATE YOUR BROWSER

- UPDATE YOUR ROUTER



Play Phishing Quizzes to protect yourself:
https://bitcointalk.org/index.php?topic=5178375

1568840717
Hero Member
*
Offline Offline

Posts: 1568840717

View Profile Personal Message (Offline)

Ignore
1568840717
Reply with quote  #2

1568840717
Report to moderator
1568840717
Hero Member
*
Offline Offline

Posts: 1568840717

View Profile Personal Message (Offline)

Ignore
1568840717
Reply with quote  #2

1568840717
Report to moderator
1568840717
Hero Member
*
Offline Offline

Posts: 1568840717

View Profile Personal Message (Offline)

Ignore
1568840717
Reply with quote  #2

1568840717
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1568840717
Hero Member
*
Offline Offline

Posts: 1568840717

View Profile Personal Message (Offline)

Ignore
1568840717
Reply with quote  #2

1568840717
Report to moderator
tranthidung
Hero Member
*****
Offline Offline

Activity: 588
Merit: 645


LiveCoin - is a modern stock exchange


View Profile
September 06, 2019, 01:55:30 AM
 #2

Appreciated your thread.
There are abundant scammers, and attackers around us, especially when price of bitcoin has not stopped increasing over years, and blockchain technology and its usages have more widely accepted and spreaded over the globe.
There are benefits, there are abusers whom never stop adapting to any changes and upgrades of AVs and security methods. To protect themselves, crypto enthusiasts have to kept fundamental rules in mind and keep obeying those rules:
(1) Don't be greedy (with give-aways, bonuses, tips that sent to their emails through strangers)
(2) Don't over curious (with extensions, add-ons, etc.)
(3) Don't naively give strangers control (partial or full) controls of their devices / wallets, such as remote control (Team Viewer, private keys, seeds, e.g.)

Threats changed over time, but basic strategies from scammers and attackers have never changed.

█████████▄           ▄█
▀██▄         ██
▀██▄    ▄▄ ██
▀███ ███ ██
█████████▄        ▀▀ ██
▀██▄      ▄▄ ██
▄█████████ ███ ██
▄██▀          ▀▀ ██
████
█▀            ▄▄ ██
▄██ ███ ██
▄██▀   ▀▀ ██
▄██▀        ██
███████████▀          ▀█




▄▄█
█████
█████
█████
█████
█████

█████

█████

█████


▄▄█
█████
█████
█████
█████
█████
█████
█████

█████

█████

█████
▄▄█
█████
█████
█████
█████
█████
█████
█████
█████
█████

█████

█████

█████
█▄           ▄█████████
██         ▄██▀
██ ▄▄    ▄██▀
██ ███ ███▀
██ ▀▀        ▄█████████
██ ▄▄      ▄██▀
██ ███ █████████▄
██ ▀▀          ▀██▄
██ ▄▄            ▀█████
██ ███ ██▄
██ ▀▀   ▀██▄
██        ▀██▄
█▀          ▀███████████
dkbit98
Sr. Member
****
Offline Offline

Activity: 532
Merit: 340


First 100% Liquid Stablecoin Backed by Gold


View Profile WWW
September 06, 2019, 08:58:25 AM
 #3


(1) Don't be greedy (with give-aways, bonuses, tips that sent to their emails through strangers)
(2) Don't over curious (with extensions, add-ons, etc.)
(3) Don't naively give strangers control (partial or full) controls of their devices / wallets, such as remote control (Team Viewer, private keys, seeds, e.g.)

Threats changed over time, but basic strategies from scammers and attackers have never changed.

Thanks @tranthidung
I agree with all you wrote above.

Some extensions can be useful and good like Malwarebytes, Metamask, uBlock...

And people should learn more about protection, as scammers always find new ways to scam people


BALIK
Copper Member
Hero Member
*****
Offline Offline

Activity: 840
Merit: 512


View Profile
September 06, 2019, 09:16:48 AM
 #4

As far as I can tell reading through the Trend Micro report, it appears that the Glupteba virus can only successfully execute on the system after being opened by the unsuspecting user or installed in the background due to another virus. Because of this, simply avoiding opening .exe or similar executable files from unknown publishers should protect against the attack.

However, I have seen reports that older versions of Firefox can be exploited to run arbitrary code without user interaction, similarly there are reports that older versions of VLC Player and Media Player Classic can execute code after playing specially crafted .AVI videos. Of course, the majority of these viruses now target cryptocurrency owners, or use the machine resources to begin mining POW cryptocurrencies.

In any case, that Glupteba virus is masterfully created, I have to give them that—it's damn clever. We will see if code is still law when a virus like this eventually steals the GitHub keys of a Bitcoin Core dev etc.

This is why I use MacOS, you scarcely see reports like this affecting Apple devices.
dkbit98
Sr. Member
****
Offline Offline

Activity: 532
Merit: 340


First 100% Liquid Stablecoin Backed by Gold


View Profile WWW
September 07, 2019, 06:51:06 PM
 #5

In any case, that Glupteba virus is masterfully created, I have to give them that—it's damn clever. We will see if code is still law when a virus like this eventually steals the GitHub keys of a Bitcoin Core dev etc.

This is why I use MacOS, you scarcely see reports like this affecting Apple devices.

It does not mean Apple is not affected, and same goes for Linux.
They can now create malware that can run on multiple OS.

dkbit98
Sr. Member
****
Offline Offline

Activity: 532
Merit: 340


First 100% Liquid Stablecoin Backed by Gold


View Profile WWW
September 08, 2019, 06:23:16 PM
 #6

More publicity...but written badly by Forbes...
Bitcoin blockchain is NOT hijacked you AH
https://www.forbes.com/sites/billybambrough/2019/09/07/serious-malware-warning-over-bitcoin-blockchain/amp/


inechain_original
Newbie
*
Offline Offline

Activity: 5
Merit: 0


View Profile WWW
September 09, 2019, 03:01:31 PM
 #7

In any case, that Glupteba virus is masterfully created, I have to give them that—it's damn clever. We will see if code is still law when a virus like this eventually steals the GitHub keys of a Bitcoin Core dev etc.

This is why I use MacOS, you scarcely see reports like this affecting Apple devices.

It does not mean Apple is not affected, and same goes for Linux.
They can now create malware that can run on multiple OS.

That was a very important reason why I loved Apple.
dkbit98
Sr. Member
****
Offline Offline

Activity: 532
Merit: 340


First 100% Liquid Stablecoin Backed by Gold


View Profile WWW
September 09, 2019, 03:17:02 PM
 #8

In any case, that Glupteba virus is masterfully created, I have to give them that—it's damn clever. We will see if code is still law when a virus like this eventually steals the GitHub keys of a Bitcoin Core dev etc.

This is why I use MacOS, you scarcely see reports like this affecting Apple devices.

It does not mean Apple is not affected, and same goes for Linux.
They can now create malware that can run on multiple OS.

That was a very important reason why I loved Apple.

'Loved' is a past tense...
and apple is not malware resistant like you think

Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!