THELOGICALINDIAN - The contempo hacking and defacing of the blog and Twitter annual of Mt Gox CEO Mark Karpeles and the aperture of a 716 Mb annal book that allegedly independent barter abstracts database depression claimed advice about Karpeles and an app for accidentally accessing Mt Gox abstracts has allegedly been a able angle to accomplish users download Bitcoinstealing malware
According to Kaspersky Lab able Sergey Lozhkin, the book does accommodate (publicly available) abstracts accompanying to Mt. Gox trades, but additionally a Windows and a Mac Trojan.
n the background, the malware creates and executes the TibanneSocket.exe bifold and searches for bitcoin.conf and wallet.dat files on the target’s computer. If the closing book is begin unencrypted, the abyss abaft this arrangement will calmly admission and abduct the bitcoins stored in it.
The C&C server to which the advice is exfiltrated is amid in Bulgaria, but is currently offline.
This is not the aboriginal time that cyber crooks accept taken advantage of Mt. Gox users’ agony to betray the. Earlier this ages scammers claimed that Mt. Gox will acknowledgment all the absent Bitcoins, and apprenticed users to watch a video account the process. In adjustment to do so, they were appropriate to download a affected and awful Adobe Flash Player.
commented Lozhkin.
In fact, it seems that Mt. Gox users accept already been targeted with phishing emails impersonating the barter and allurement them to allotment their name, address, username and password, and coffer annual number.
Author: Zejka Zorz
Source: net.security.org
