PennyWise Malware Steals Crypto Through YouTube Links


A new type of crypto malware identified on GOOG’s YouTube, GOOGL Google, which is owned by Alphabet Inc, has been found to infect and steal users’ devices from 30 different types of cryptocurrency wallets and browsers.

What happened: According to a recent report from cyber intelligence firm Cyble Research Labs, the newly developed cryptocurrency stealer called “PennyWise” uses multithreading to steal user data.

The threat actors (TA) reportedly distributed the PennyWise stealer as a link to download free Bitcoin BTC/USD mining software.

See Also: Axie Infinity’s Ronin Bridge Reboots After $625 Million Abuse, Offers Compensation to Hack Victims

“When a user visits the link, the TA instructs them to download the malware hosted on the file hosting service. The malware file is compressed and password protected. To appear legitimate, the TA shared a VirusTotal link of a clean file unrelated to the file available for download,” the Cyble researchers explain.

The malware targets a large number of cold crypto wallets, including Ethereum ETH/USD and Zcash ZEC/USD wallets. One notable feature of the malware’s design is that it stops if it determines that the victim is in Russia, Ukraine, Belarus, or Kazakhstan.

“This could indicate that the TA is trying to avoid scrutiny by law enforcement agencies in these specific countries,” the researchers said.

So far, it reports that there are more than 80 videos on the threat actor’s YouTube channel that appear to have been created for the purpose of mass infection.

Last month, cybercriminals targeted followers of Elon Musk with deepfake videos posing as the CEO of Tesla Inc TSLA. Users were encouraged to connect their crypto wallets to an illegal website and deposit Bitcoin.

Read Next: Crypto Lender Voyager Files For Chapter 11 Bankruptcy Protection

Photo via JLStock on Shutterstock


This post PennyWise Malware Steals Crypto Through YouTube Links was original published at “https://www.benzinga.com/markets/cryptocurrency/22/07/27964683/pennywise-malware-steals-crypto-by-free-bitcoin-mining-links-on-youtube”

Leave a Reply

Your email address will not be published.