Cybersecurity and antivirus firm Bitdefender has detected BHUNT, a new type of malware that targets cryptocurrency wallets through software installation. The malware operates on the basis of installing unsafe or cracked software that has been packaged with the system and can be deployed in a desktop environment. Once installed, the software pulls passphrases and seeds from popular wallets.
BHUNT malware found in the wild
Leading cybersecurity firm Bitdefender released Report Regarding a new type of password stealer that focuses on users’ cryptocurrency wallets on their PCs. The new malware, known as BHUNT, gets into computers by installing infected software, mostly cracked software. According to a technical document published on the software, BHUNT attacked Exodus, Electrum, Atomic, Jaxx, Ethereum, Bitcoin and Litecoin wallets. Once installed, the software can transfer the user’s funds to another wallet and also steal other private data residing on the infected computer.
Password stealers are no strangers to the PC world, as computers have been infected with various viruses that have these capabilities. What is special about this software is that its existence is highly encrypted and packaged as digitally signed software, but the certificate issued does not match the binary of the program.
Infection and Prevention
Bitdefender concluded that BHUNT was released in the wild and that it was spread with no clear target. Regarding how the software spread, Bitdefender’s report states:
All of our telemetry data comes from home users who are more likely to have cryptocurrency wallet software installed on their systems. This target group is also more likely to install cracks in operating system software, which we suspect are the main source of infection.
The company has plotted the level of detected infections on a map, with the most infected countries being Australia, Egypt, Germany, India, Indonesia, Japan, Malaysia, Norway, Singapore, South Africa, Spain and the United States
Bitdefender also issued recommendations to avoid infection with BHUNT or other similar password-stealing malware. “The most effective way to defend against this threat is to avoid installing software from untrusted sources and to keep security solutions up to date,” the report concluded.
Recently, a seed containing the new “Spider-Man: Homeless” movie was report Also contains cryptocurrency malware.
What do you think of the new BHUNT cryptocurrency-stealing malware? Let us know in the comments section below.
Image Source: Shutterstock, Pixabay, Wiki Commons
Disclaimer: This article is for reference only. It is not a direct offer or invitation to offer, nor is it a recommendation or endorsement of any product, service or company. Bitcoin Network Does not provide investment, tax, legal or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused or related to the use of or reliance on any content, goods or services mentioned herein.