CRYPTO MALWARE

ElectroRAT malware targets Crypto users via fake Apps

Hackers have been running this malware operation since the beginning of 2020, with the end goal of stealing victims’ funds

We are still reeling from the massive hack that was discovered last month in which the Russian hackers managed to hack into multiple U.S government agencies in what could perhaps be the largest hack of government systems ever. The scary part was that the hack went unnoticed for months. Cybersecurity has emerged as one of the major pain points for the tech ecosystem and the problem seems to be getting bigger by the day.

Cybersecurity firm Intezer Labs is now pointing to another year-long operation by hackers, which tricks crypto users into installing fake Apps infested with malware. The eventual goal is to steal their crypto funds. As reported by ZDNet, the campaign was discovered in Dec. 2020, but researchers said they believe the group began spreading their malware as early as January 8, 2020.

The crypto-related apps employed for this operation are namely Jamm, eTrade/Kintum, and DaoPoker — hosted on websites at jamm.to, kintum.io, and daopker.com, respectively. The first two are disguised as crypto trading apps whereas the third one is portrayed as a…