Cryptocurrency exchanges targeted by new malware, CookieMiner

Monday 4 February 2019 10:23 CET | News

Palo Alto Networks researchers have discovered a malware, dubbed CookieMiner, which targets exchanges such as Binance, Coinbase, Poloniex, Bittrex, Bitstamp and MyEtherWallet.

CookieMiner intercepts browser cookies related to cryptocurrency exchanges and wallet service providers’ websites visited by the victims.

Moreover, besides crypto exchanges, the malicious code also targets any website having “blockchain” in its domain name, the researchers found. It also tries to steal credit card information from major issuers, such as Visa, Mastercard, American Express and Discover, as well as saved usernames and passwords in Chrome, iPhone text messages that are backed up to iTunes and crypto wallet keys.

If successful at stealing those details, hackers can gain full access to victims’ crypto exchange and wallet accounts to steal funds.

The malware has another string to its bow too – it changes a victim’s system configuration to maliciously load crypto mining software. The coinminer is similar to a variant that mines monero, but instead targets a lesser-known cryptocurrency called Koto, the researchers said.

Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: Palo Alto Networks, Binance, Coinbase, Poloniex, Bittrex, BitStamp, MyEtherWallet, CookieMiner, malware, crypto mining, fraud prevention
Countries: World

Industry Events