Juniper Networks has discovered a new Masad Stealer virus, which spoofs the addresses of cryptocurrency wallets in users’ browsers, as a result of which they send funds to an attacker.
In addition, Masad Stealer steals various personal information and system data. The virus sends to the hacker credit card information stored in the browser, files from the desktop, Discord service data, and so on. At the same time, Telegram messenger is used to send data.
The virus has a built-in algorithm for recognizing the addresses of the cryptocurrency wallets Monero, Litecoin, Zcash, Dash and Ethereum in the clipboard. After finding the address of the cryptocurrency wallet, Masad Stealer replaces it with the address of the attacker.
“Masad Stealer is distributed through disguise as another program, as well as through the introduction of third-party utilities in the installation packages. Users download the virus from various forums and file sharing sites, ”say computer security experts.
Recall that at the end of August, the McAfee antivirus company reported that for the 1st quarter of 2019, the number of installations of malware for cryptocurrency mining increased by 29% compared to the previous quarter.
Related posts:
GitHub Libra Code draws criticism from users 
Tipping on Reddit and Vimeo in BAT introduced by Brave 
Newcomers to the crypto market have to pay attention to scams and pump and dumps 
Hardly any growth in downloaded crypto apps, despite tripling price bitcoin 
Bloomberg accepts Bitcoin – says cryptomonads are here to stay 
The Central Bank can release their cryptocurrencies earlier than expected
