Another info stealer and crypto miner malware was spotted in Latin America again. It was dub as dubbed
Chaes by the team that discovered it, Cybereason Nocturnus researchers.
Initially it focuses on it's attack on MercadoLivre - the largest e-commerce in Brazil.
What makes this infostealer relevant to crypto users is that one component of this malware is that it has a crypto mining module, a
coinminer.
What is CoinMiner malware?
Coinminers (also called cryptocurrency miners) are programs that generate Bitcoin, Monero, Ethereum, or other cryptocurrencies that are surging in popularity. When intentionally run for one's own benefit, they may prove a valuable source of income.
However, malware authors have created threats and viruses which use commonly-available mining software to take advantage of someone else's computing resources (CPU, GPU, RAM, network bandwidth, and power), without their knowledge or consent (i.e. cryptojacking).
And just like the rest of authored malware, they find the weakest link - which is to spread them your email and supposedly software updates.
-
https://www.zdnet.com/article/chaes-malware-strikes-customers-of-latin-americas-largest-e-commerce-platform/-
https://www.cybereason.com/blog/novel-chaes-malware-underscores-heightened-e-commerce-risk-this-holiday-season-
https://support.norton.com/sp/en/us/home/current/solutions/v125881893-
https://www.cybereason.com/hubfs/dam/collateral/reports/11-2020-Chaes-e-commerce-malware-research.pdf