Echobot malware is a new version of Mirai!
infosec

Echobot malware is a new version of Mirai!

If there is one thing that seems to have no end to security issues are the authors of malware who ...
Read More
infosec

Mermaids: Personal messages spilled between the organization and parents of transgender children

Mermaids UK is an organization founded by parents of transgender children and aims to support these children ....
Read More
infosec

"Election" hacking has never been simpler than it is today!

Being a professional hacker has never been easier and more profitable than it is today. According to...
Read More
infosec

A new Android Trojan misleads users through notifications

A new Android Trojan discovered by security researchers on the Google Play Store uses false notifications to redirect their ...
Read More
infosec

Europol: Training of police officers with ....... a game!

In recent years, cryptocurrencies are a frequent target of hackers' attacks. For this reason, Europol has decided to train ...
Read More
Latest Posts

The new Bithoin free script contains Trojan

A new crypto fraud offering free Bitcoin is advertised on scam websites that offer free Ethereum.

A new crypto scam was just found by an independent security researcher named Frost on Twitter. It offers a free Bitcoin worth $ 5-30 per day, just running the so-called Bitcoin Collector program, but in fact, when the user clicks, it installs only ransomware or Trojan Password Theft on the victim's device. Fraud can be advertised on scam websites that offer 3 ETH to users saying they will earn money each time someone clicks on the link id, such as the ethmoney.club website.

Clicking on the ad saying "Earn 15 $ -45 $ \ day in BTC for FREE and automatically" will bring users to another page that contains a link to download the Bitcoin Collector program, which also provides a link VirusTotal, probably to show the security of the link and to enhance its credibility to finally convince the victims to click.

Once they click, they will download a Trojan-containing file that will infect the computer after install and automatically launch a malware payload.

In an earlier version, the payload was actually a HiddenTear ransomware called "Marozka Tear Ransomware," which when run displays a message saying "All your information (documents, databases, backups and other files) on this computer will encrypted using cryptographic algorithms. All files were formatted with the .Crypted. This ".Crypted." File is a creation of American hackers. You can restore files using a decryptor and a password. It's impossible to do it in a different way. Reinstalling the operating system will not change anything. No admin in the world can solve this problem without knowing the code. Under no circumstances modify the files. But if you want to make modifications, get a backup. Send us an email to india2lock2gmail.com. You have 48 hours left. If the files are not decrypted, after 48 hours they will be removed forever! "

Bitcoin

According to the BleepingComputer team, the latest version is more dangerous, as the Trojan inside it is able to steal the credentials of the website they visit, take screenshots, retrieve the history of the browser, steal files from the infected computer and even stealing cryptocurrency wallets.

Great attention to your clicks, this is the best advice we have to give all investors in the crypto-market out there!

Do you have an opinion? Leave your comment.

The author allows you to copy his / her text only if you report the source (SecNews.gr), as an e-mail address (Live URL) of the article.
Updated on by

Reader Interactions

Leave a reply

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *