New ‘BHUNT’ Malware Steals Your Cryptocurrencies, India’s Most Widespread

Cybercriminals are stealing now cryptocurrency wallet content, passwords and passphrases, targeting the crypto wallets users have on their PCs, a new report says. According to Bitdefender, a cybersecurity company, a crypto wallet stealing malware called “BHUNT” enters computers through pirated software installations and attacks Exodus, Electrum, Atomic, Jaxx, Ethereum, Bitcoin and Litecoin wallets.

For the uninitiated, digital currencies such as Bitcoin, Ethereum or Dogecoin are stored in something called a “wallet”, which can be accessed using your “private key” – the crypto equivalent of a super password. secure – without which the crypto owner cannot access the currency. Desktop wallets store private keys on your hard drive or SSD on your computer. Ideally, these are more secure than web and mobile wallets because they don’t rely on third parties for their data and are harder to steal.

It should be noted that the malware comes bundled with pirated software which is downloaded using torrentz and other rogue websites. Once the malware is installed on your PC, it can transfer users’ funds to another wallet and also steal other private data residing on the infected computer. “While the malware primarily focuses on stealing information related to cryptocurrency wallets, it can also harvest passwords and cookies stored in browser caches,” Bitdefender’s report explains. “This can include account passwords for social media, banking, etc., which could even lead to an online identity takeover.”

What makes this malware special is that it is strongly encrypted and packaged as digitally signed software, which means your computer will not detect it as a form of malware. “All of our telemetry came from home users who are more likely to have cryptocurrency wallet software installed on their systems. This target group is also more likely to install cracks for operating system software, which we suspect to be the main source of infection,” the company said in its report.

This malware has been detected worldwide, with its highest concentration of infected users in India, followed by Australia, Egypt, Germany, Indonesia, Japan, Malaysia , Norway, Singapore, South Africa, Spain and the United States.

To avoid getting infected with BHUNT, the company notes that users should simply avoid downloading pirated software, cracks and activators of illegitimate products.

Meanwhile, earlier in December, downloading pirated copies of ‘Spider-Man: No Way Home’ from torrent sites came with a cryptocurrency mining unwanted malware, warned researchers at Reason Cybersecurity. According to researchers, illicit copies of the latest Spider-Man movie include a malware variant called “Spiderman”, which was previously disguised as popular apps such as “Windows Updater” and “Discord app”.

Comments are closed.