An advisory published by U.S. and U.K. government agencies warns users of new malware being used to target crypto wallets and exchanges.
A collaboration between the US National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the UK National Cyber Security Center (NCSC), part of the Government Communications Headquarters (GCHQ), release A joint report on the malware dubbed “The Notorious Chisel.”
The malware is linked to the activities of Sandworm, a cyber warfare unit of Russia’s military intelligence agency GRU, the report said. The joint report also states that Sandworm has been targeting the Ukrainian military’s Android devices, using new malware to extract information from infected mobile devices.
The report noted that some of the data extracted by the malware included data from the Binance and Coinbase exchange apps, as well as the Trust Wallet app catalog. According to the report, every file in the listed directory is being compromised, regardless of its type.
The joint report also noted that Inknown Chisel’s components were developed with little regard for “hiding malicious activity.” The malware lacks stealth techniques to hide its activity. However, this could be due to the lack of a host-based detection system for Android devices, the report said.
related: FBI Seizes Nearly $2M in Crypto Assets in 3 Months
Meanwhile, breaches, hacks, and scams have cost nearly $1 billion in 2023. On Sept. 1, blockchain security firm CertiK reported that it has lost around $997 million so far this year. In August alone, such attacks cost an estimated $45 million. Despite the larger amount, losses were still significantly lower than the previous month. In July, more than $486 million worth of digital assets were lost to malicious attacks.
Bookmark this article as an NFT Preserve this moment in history and show your support for independent journalism in the cryptocurrency space.
Magazine: Deposit Risk: What Are Crypto Exchanges Really Doing With Your Money?
Svlook