SCF Advanced Search

banner

banner

Members
Stats
  • Total Posts: 39447
  • Total Topics: 13710
  • Online Today: 586
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)









banner

Author Topic: Pony botnet targets Crypto-Currencies  (Read 2448 times)

0 Members and 1 Guest are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7528
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Pony botnet targets Crypto-Currencies
« on: 26. February 2014., 17:42:55 »


Another $US200,000-plus worth of Bitcoins has been lifted, according to Trustwave, which has identified a new Pony botnet targeting crypto-currencies.

News of the heist comes hard on the heels of Mt Gox withdrawing from the Bitcoin foundation and killing off its social media accounts: http://scforum.info/index.php/topic,8860.0.html



Pony isn't a horse of a completely different colour: it first emerged during 2013, and was fingered for lifting a couple of million passwords in December, as explained in this McAfee blog post: https://blogs.mcafee.com/consumer/pony-botnet-steals-2-million-passwords

The same botnet has now been successfully deployed as a crypto-currency stealer, according to a Trustwave Spiderlabs post: http://blog.spiderlabs.com/2014/02/look-what-i-found-pony-is-after-your-coins.html

“Not only did this Pony botnet steal credentials for approximately 700,000 accounts, it’s also more advanced and collected approximately $220,000 (all values in this post will be in U.S. dollars) worth, at time of writing, of virtual currencies such as BitCoin (BTC), LiteCoin (LTC), FeatherCoin (FTC) and 27 others,” write the company's Daniel Chechik and Anat Davidi.

They continue: “This instance of Pony compromised 85 wallets, a fairly low number compared to the number of compromised credentials. Despite the small number of wallets compromised, this is one of the larger caches of BitCoin wallets stolen from end-users.”

This Pony, Trustwave says, went after not only Bitcoin, but a bunch of other crypto-currencies. They list Anoncoin, BBQcoin, Bytecoin, Craftcoin, Devcoin, Digitalcoin, Fastcoin, Feathercoin, Florincoin, Franko, Freicoin, GoldCoin, I0coin, Infinitecoin, Ixcoin, Junkcoin, Litecoin, Luckycoin, Mincoin, Namecoin, NovaCoin, Phoenixcoin, PPCoin, Primecoin, Quarkcoin, Tagcoin, Terracoin, Worldcoin, Yacoin and Zetacoin.

The attack ended not by being shut down by security companies, but because the attackers “closed shop” during January.

Trustwave notes that most users, it seems, don't encrypt their wallets, which seems somewhat rash to The Register.

(ElReg)



Dear SCF visitors,

Keep your PC & Wallets protected:

- Regular update your OS:
http://scforum.info/index.php/board,8.0.html

- Use a good antivirus program and always updated AV: http://scforum.info/index.php/board,10.0.html

- Install Firewall: http://scforum.info/index.php/board,13.0.html

- Do not open unknown mail attachment, do not visit suspicious sites etc.

- For all your security related questions (Windows/Mac OS, Linux, iOS, Androïd, WWW, ...), for all your Repair and Maintenance questions use SCforum's "PC Help Center":
http://scforum.info/index.php/board,16.0.html

cya around,

S.

Samker's Computer Forum - SCforum.info

Pony botnet targets Crypto-Currencies
« on: 26. February 2014., 17:42:55 »

devnullius

  • SCF VIP Member
  • *****
  • Posts: 3610
  • KARMA: 157
  • Gender: Female
    • SCForum.info
Re: Pony botnet targets Crypto-Currencies
« Reply #1 on: 26. February 2014., 19:58:46 »
You wrote a great article Samker!!

I'd like to add one more advise... Be careful when you rush to download a new wallet for a new coin... Once in a while,  fake wallets are distributed, full with malware. Bye bye coins!

New wallet means new malware means bigger chance that it is *not* detected by AV... :s

D
More information about bitcoin, altcoin & crypto in general? GO TO  j.gs/7385484/btc

Cuisvis hominis est errare, nullius nisi insipientis in errore persevare... So why not get the real SCForum employees to help YOUR troubled computer!!! SCF Remote PC Assist http://goo.gl/n1ONa9

Samker's Computer Forum - SCforum.info

Re: Pony botnet targets Crypto-Currencies
« Reply #1 on: 26. February 2014., 19:58:46 »

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising