HackDig : Dig high-quality web security articles for hacker

Bitstamp Users Targeted by Bitcoin Thieves

2014-10-30 15:10

Earlier this month, ThreatTrack Security researchers observed the credential stealing Trojan, Dyre, adding Bitcoin wallet sites to its list of targets, including Bitstamp.net.

Recently, the team spotted a malicious spam campaign directly targeting Bitstamp users. The message (see image below) misappropriates Bitstamp’s branding and claims “We would like to inform you that Bitstamp now has new bank details, please check attached file.”

Bitstamp users targeted by Bitcoin thieves in spam campaign

Bitstamp users targeted by Bitcoin thieves in spam campaign

The attachments (and their corresponding MD5s) in this spam were:

bank details.zip (B99B49DA653A8EB55CF60F3F7C064021)

bank details.scr (840549760F6316F61C4B3A955A43A363)

The malicious payload in this case is Upatre, which drops Dyre, leaving users vulnerable to having their Bitcoin and other online banking credentials stolen.

Credit: Robert Stetson, Malware Researcher, ThreatTrack Security Labs

The post Bitstamp Users Targeted by Bitcoin Thieves appeared first on ThreatTrack Security Labs Blog.


Source: /8qAaIZ4mNk8/3~/ytiruceskcarttaerht/r~/moc.elgoog.yxorpdeef

Read:3190 | Comments:0 | Tags:ThreatTrack Security Labs Bitcoin bitstamp Dyre Dyreza spam

“Bitstamp Users Targeted by Bitcoin Thieves”0 Comments

Submit A Comment

Name:

Email:

Blog :

Verification Code:

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud