Feb 19, 2023
Malicious Software Targets Crypto Investors
Malwarebytes, a leading anti-malware software provider, has identified two new malicious computer programs actively targeting crypto investors in a desktop environment. The two malicious files, MortalKombat ransomware and Laplas Clipper malware, have been active since December 2022 and are primarily targeting investors in the United States, with smaller percentages of victims in the United Kingdom, Turkey, and the Philippines.
The attack works by taking advantage of users’ inattentiveness. The malicious software scans the user’s clipboard, which is usually a string of letters and numbers copied by the user, and then detects wallet addresses copied onto the clipboard and replaces them with a different address. This means that the user’s funds are sent to the attacker instead of the intended recipient. The attack is indiscriminate and targets both individuals and organizations.
Once infected, the MortalKombat ransomware encrypts the user’s files and drops a ransom note with payment instructions. The malicious software is downloaded from an attacker-controlled server via IP address 193[.]169[.]255[.]78, located in Poland. According to Talos’ analysis, this server is running an RDP crawler, scanning the internet for exposed RDP port 3389.
The attack is initiated with a cryptocurrency-themed email containing a malicious attachment. The attachment runs a BAT file that helps download and execute the ransomware when opened.
Fortunately, investors can take proactive steps to prevent themselves from becoming victims of this attack. Cointelegraph recommends investors to perform extensive due diligence before investing, and to ensure the official source of communications. Additionally, investors should check out this Cointelegraph Magazine article to learn how to keep crypto assets safe.
On the other hand, ransomware revenues for attackers have been declining. According to Chainalysis, ransomware revenues for attackers dropped 40% to $456.8 million in 2022. However, this does not necessarily mean that the number of attacks is down from the previous year.
As the crypto space continues to grow, it is important to stay vigilant and take the necessary steps to protect your crypto assets. NFTs (Non-Fungible Tokens) are becoming increasingly popular, and as such, it is important to be aware of the potential risks associated with them. To ensure the safety of your investments, it is recommended to use a reputable NFT marketing agency or web3 agency to help promote and sell your NFTs. Additionally, it is important to use Twitter NFT marketing to reach a wider audience and increase your chances of success.
Disclaimer: All investment or financial opinions expressed by MoonLanding Media are not recommendations and are intended for entertainment purposes only. Do your own research prior to making any kind of investment. This article has been generated based on trending topics, has not been fact checked and may contain incorrect information. Please verify all information before relying on it.
