Connect with us

Cryptocurrency

New AZORult Campaign Abuses Popular VPN Service to Steal Crypto

Published

on

Kaspersky researchers have detected an unusual malicious campaign that uses a phishing copy of a popular VPN service’s website to spread AZORult, a Trojan stealer, under the guise of installers for Windows. In 2019 this malware targeted more than 40,000 users in the Middle East. The campaign, which kicked off at the end of November 2019 with the registration of a fake website, is currently active and focused on stealing personal information and cryptocurrency from infected users. This shows that cybercriminals are still hunting for cryptocurrency, despite reports that interest in the currency has died down.

AZORult is one of the most commonly bought and sold stealers on Russian forums due to its wide range of capabilities. This Trojan poses a serious threat to those whose computers may have been infected as it is capable of collecting various data, including browser history, login credentials, cookies, files from folders, cryptowallet files and can also be used as a loader to download other malware.

In a world where privacy is heavily fought for, VPN services play an important role by enabling additional data protection and safe internet browsing. Yet cybercriminals try to abuse the growing popularity of VPNs by impersonating them, as is the case in this AZORult campaign. In the most recent campaign, the attackers created a copy a VPN service’s website, which looks exactly the same as the original with the only exception being a different domain name.

Links to the domain are spread through advertisements via different banner networks, a practice that is also called ‘malvertizing’. The victim visits the phishing website and is prompted to download a free VPN installer. Once a victim downloads a fake VPN installer for Windows, it drops a copy of AZORult botnet implant. As soon as the implant is ran, it collects the infected device’s environment information and reports it to the server.

Finally, the attacker steals cryptocurrency from locally available wallets (Electrum, Bitcoin, Etherium, and others), FTP logins, and its passwords from FileZilla, email credentials, information from locally installed browsers (including cookies), credentials from WinSCP, Pidgin messenger and others. Upon the discovery of the campaign, Kaspersky immediately informed the VPN service in question about the issue and blocked the fake website.

“This campaign is a good example of how vulnerable our personal data is nowadays. In order to protect it, users need to be cautious and be especially careful when surfing online. This case also shows why cybersecurity solutions are needed on every device. When it comes to phishing copies of websites, it is very difficult for the user to differentiate between a real and a fake version. Cybercriminals often capitalize on popular brands and this trend is not likely to die down”, comments Dmitry Bestuzhev, head of GReAT in Latin America. “We strongly recommend using a VPN for protection of data exchange on the web, but it is also important to closely study where the VPN software is downloaded from.”

Kaspersky detects this threat as HEUR: Trojan-PSW.Win32.Azorult.gen. To reduce the risk of infection with Trojan stealers such as AZORult, Kaspersky recommends users to:

  • Check if the website is authentic. Do not visit websites until you are sure that they are legitimate and start with ‘https’. Confirm that the website is genuine by double-checking the format of the URL or the spelling of the company name, reading reviews about it and checking the domain’s registration data before starting downloads
  • Store cryptocurrencies in cold wallets (ones that are not connected to the internet) to minimize risks of funds being stolen
  • Try to keep your passwords and other personal information, including a wallet’s private key, in a password manager.
  • Use a reliable security solution that protects devices from a wide range of threats, including phishing activity.
Click to comment

You must be logged in to post a comment Login

Leave a Reply

Cryptocurrency

Donald Trump Launches $99 Digital Trading Card NFTs

Published

on

Former US President Donald Trump announced on Thursday that he has released a collection of 45,000 non-fungible tokens (NFTs), called the Trump Digital Trading Cards, on Truth Social, the social media site he founded last year. The tokens, which are similar to collectible baseball cards and are minted on Polygon, cost $99 each and can be purchased with ether (ETH) or in fiat currency. At the end of the checkout process, customers are given the option to purchase multiple trading cards.

There is also a promotion offering a guaranteed ticket to a gala dinner with Trump for purchasing 45 NFTs at once, which would cost $4455. Collectors who purchase a Trump Digital Trading Card will be entered into a “sweepstakes” to win experiences with the former president, including a zoom call, a dinner in Miami, or a cocktail hour at Mar-a-Lago. The trading cards have rarity traits ranging from one-of-a-kind to a maximum of 20 copies, according to the collection’s website. Despite previously stating that he was “not a fan” of cryptocurrency in July 2019, Trump appears to be enthusiastic about promoting his new NFT collection.

“GET YOUR CARDS NOW! Only $99 each! Would make a great Christmas gift. Don’t Wait. They will be gone, I believe, very quickly!” he wrote in a post on his platform. The collection’s website also features a promotional video from Trump, in which he says, “Each card comes with an automatic chance to win amazing prizes like dinner with me. I don’t know if it’s an amazing prize but it’s what we have.”

The project initially received criticism on Twitter, with some labeling the collection a “scam.” Others noted previous reports of his questionable 2020 campaign fundraising efforts and allegations of murky spending. Shares of Digital World Acquisition Corp (DWAC), a special purpose acquisition company (SPAC) that entered into a proposed merger deal with Trump’s social media company, dropped by about 7% after the announcement of his NFT collection. This is President Trump’s first official NFT project, but his wife, Melania Trump, launched her own NFT collection called “Cobalt Blue Eyes” almost exactly a year ago.

Continue Reading

Cryptocurrency

Ledger Launches the Ledger Stax

Published

on

Ledger has teamed up with Tony Fadell, builder of the iPod1, to bring clarity and confidence to owning digital value. Ledger StaxTM is a usable way for you to take control of cryptocurrency and digital collectibles. It’s built on uncompromisingly secure architecture and introduces a unique form designed for unprecedented accessibility and interactivity.

Ledger Stax has a new E-Ink display, which covers the front and curves around the spine—you can view complete transaction details at a glance. E Ink is always viewable: your favorite art appears on the Ledger Stax screen, even when it is off. It also provides unmatched energy efficiency, so the battery can last for weeks or even months on one battery charge.

“With the Ledger NanoTM series, we created the most successful digital asset security hardware of all time—with more than 5 million sold and none ever hacked,” says Pascal Gauthier, CEO, and Chairman of Ledger. “Digital assets are increasingly about identity and digital ownership, not just crypto like Bitcoin. The time is now for a device for more mainstream users. At the same time, we must not compromise on security. This is Ledger Stax—secure and accessible.”

Tony Fadell designed Ledger Stax, in collaboration with Layer, as a credit card-sized device with integrated magnets, making them easily stackable, particularly for those who own multiple devices. The curved E Ink spine shows what’s inside, like a book on a shelf. Ledger Stax uses secure USB-C to connect to the comprehensive Ledger Live app on your laptop, and Bluetooth to connect to the Ledger Live Mobile app on your smartphone. It will utilize Ledger Connect, our upcoming crypto wallet extension, to connect to Web3 apps from anywhere. Ledger Stax also supports wireless Qi charging.

“Digging into Ledger’s proven security technology and trying all the ‘best’ hardware wallets out there convinced me to build a next-gen device with Pascal, Ian, and the amazing Ledger team,” says Tony Fadell, designer of Ledger Stax and Principal at Build Collective. “We need a user-friendly…no! A ‘user-delightful’ tool, to bring digital asset security to the rest of us, not just the geeks.”

The new user interface enables clear, intuitive interaction. Out of the box, Ledger Stax lets you manage your NFT collection and over 500 coins and assets. The touch interface empowers Ledger’s exceptional developer community to build innovative Web3 applications that are more accessible, with uncompromising security. Ledger Stax will be available in Q1 2023. You can pre-order today on Ledger.com. In the future, it will also be available from select retailers such as BestBuy in the United States.

Every Ledger Stax includes an Infinity Pass, providing a free NFT and future benefits. Furthermore, a Ledger Stax NFT is available to mint on Ledger Market to unlock access to an exclusive piece of NFT artwork from Ledger’s network of hand-picked artists, and also redeem a Ledger Stax device. Ledger Market Genesis Pass holders have special mint priority for this mint.

“Tony Fadell has both the circuit board and the billboard in mind when he builds a product,” says Ian Rogers, Chief Experience Officer at Ledger. “With Ledger Stax, we have made a device that is cool, beautiful, and fun. Together we have fused the uncompromising security and self-custody culture of Ledger, with the equally uncompromising user-experience-focused culture of Tony and his team. The result is the first true secure consumer hardware device for the revolution of value brought by blockchain technology.”

SPECS:
Dimensions: 85mm × 54mm × 6mm (credit card length and width)
Security: Ledger EAL 5+ certified secure element
Screen type: E Ink (up to 16 grays), customizable always-on lock screen, capacitive touch Screen resolution: 672 × 400 pixels
Weight: 45g
Connectivity: USB C, Bluetooth 5.2
Unique magnet array for easy stacking
Qi wireless charging

Continue Reading

Cryptocurrency

Cryptoland Just Lost its $12 Million Bid to Buy Fiji Island for Resort

Published

on

Widely mocked plans to establish a tropical haven for cryptocurrency enthusiasts have run into trouble after a contract to buy an island in Fiji for US$12m fell through:

A group of crypto-evangelists, led by Max Olivier and Helena Lopez, outlined plans for the island, Nananu-i-cake, in a lavishly animated YouTube video, featuring a wide-eyed crypto bro named Christopher landing by helicopter and being given a guided tour by a talking coin called Connie.

The full YouTube clip has been taken down, but cached copies show it touted the island as “an international hub for the community to come live, work and have fun and enjoy a first-class crypto lifestyle”, boasting “a complete ecosystem that represents the blooming crypto space” that was “a paradise made by crypto enthusiasts for crypto enthusiasts”.

Areas planned included Cryptoland Bay, Crypto Beach, House of Dao – a reference to decentralised autonomous organisations, a form of non-corporate structure promoted by crypto enthusiasts as an alternative to companies – and the members-only Vladimir Club, another crypto in-joke that refers to people who hold 0.01% of a given cryptocurrency.

Also on offer were 60 plots of land on what the video describes as “the Blockchain Hills” (Nananu-i-cake has only one hill). These were to be sold to “Cryptolander Kings” via non-fungible tokens – unique tokens that use the same blockchain technology underpinning cryptocurrencies like bitcoin.

The project has been compared to the collapsed Fyre festival and the video was greeted with scoffing on social media.

Continue Reading
Advertisement
Advertisement

Latest Reviews

Follow us on Facebook