Author

Topic: Avoid Clipboard hacking (Read 455 times)

sr. member
Activity: 400
Merit: 268
December 11, 2019, 01:26:11 AM
#25
I know that some of these third party keyboards are filled with malicious codes that are designed to still your personal information when you use clipboards so it's dangerous to copy stuff and save to the clipboard. Personally I only use Google keyboards but I also want to be sure.. is it possible to hack Google keyboards as well or is it just third party keyboards for mobile devices that we should be wary of? I know hackers are getting more sophisticated daily, I just want to be sure if it has progressed to that level.
hero member
Activity: 1834
Merit: 759
December 10, 2019, 08:45:14 PM
#24
Reading this article that I have found might give some ideas on how to avoid and the solution for hacking through the clipboard.
Why you should never copy/paste your passwords?

This is hardly a threat because no one uses IE nowadays. No such attack should work on any modern browser. Copy pasting is not an issue for as long as your system isn't compromised.

What this does, however, is show that scripts can be dangerous. Everyone should have script-blockers (NoScript for Firefox, ScriptSafe for Chrome) on their broswers nowadaysj to make sure they don't get randomly attacked.
sr. member
Activity: 1512
Merit: 292
www.cd3d.app
December 10, 2019, 03:43:21 PM
#23
Yea seriously. It's still mind boggling how careless people can be, especially when transacting significant amounts of money. I mean, I'm trying my very best to keep my devices secure, but at the same time, I still double check addresses every single time regardless. What does it take to check the first and last 5 digits of a wallet address? Like 5 seconds?
100% I believed this is true. Not just the first digit and also the last digit of our address that we copy/pasting. Tripled or doubled check is a must and doesn't be naive people and one of a victim in clipboard high jacking.

Reading this article that I have found might give some ideas on how to avoid and the solution for hacking through the clipboard.
Why you should never copy/paste your passwords?

In part, I agree with this article. Personally, I use a double password technique. Its essence is that you always copy and paste the password part, and enter the second part manually.
The technique is very effective as there are almost no malicious programs against it. The most difficult thing is to remember (or write down on paper) the second part of the password.
hero member
Activity: 1806
Merit: 672
December 10, 2019, 10:31:28 AM
#22
~snip~

Yea seriously. It's still mind boggling how careless people can be, especially when transacting significant amounts of money. I mean, I'm trying my very best to keep my devices secure, but at the same time, I still double check addresses every single time regardless. What does it take to check the first and last 5 digits of a wallet address? Like 5 seconds?

The number of people being victimized alone should say that a lot of people in the industry really are careless when it comes to crypto transactions. They should be aware that the criminals are now targeting and lurking in our industry because of it's structure and how they can easily steal money in the internet. These kinds of carelessness which requires the users' error is something that will make them rich where it could eaaily be avoided just by double checking.
legendary
Activity: 2492
Merit: 1232
December 10, 2019, 06:32:36 AM
#21
Yea seriously. It's still mind boggling how careless people can be, especially when transacting significant amounts of money. I mean, I'm trying my very best to keep my devices secure, but at the same time, I still double check addresses every single time regardless. What does it take to check the first and last 5 digits of a wallet address? Like 5 seconds?
100% I believed this is true. Not just the first digit and also the last digit of our address that we copy/pasting. Tripled or doubled check is a must and doesn't be naive people and one of a victim in clipboard high jacking.

Reading this article that I have found might give some ideas on how to avoid and the solution for hacking through the clipboard.
Why you should never copy/paste your passwords?
sr. member
Activity: 1204
Merit: 270
Hire Bitcointalk Camp. Manager @ r7promotions.com
December 10, 2019, 06:07:26 AM
#20
If you write a copy somewhere to avoid clipboard hacking, you may want to double-check it. Because many times in a hurry, if you do not save it somewhere, then the hacker can fall into the trap. For this reason, if you copy or post somewhere, check it again before doing so. Many times you can give your personal information along with the post by mistake. This is why it is possible to avoid it at first glance.
mk4
legendary
Activity: 2870
Merit: 3873
Paldo.io 🤖
December 10, 2019, 05:10:11 AM
#19
Double checking your wallet address is one of the unspoken rules when it comes to crypto transactions since this is just your added precaution that you are indeed placing the right address for the transaction. Checking only the first five and last five characters of your address is not enough since the similarities don't start and end there so I think the best thing to do is to check the entire crypto address before you complete/enter the transaction.

Yea seriously. It's still mind boggling how careless people can be, especially when transacting significant amounts of money. I mean, I'm trying my very best to keep my devices secure, but at the same time, I still double check addresses every single time regardless. What does it take to check the first and last 5 digits of a wallet address? Like 5 seconds?
legendary
Activity: 2170
Merit: 1789
December 10, 2019, 12:46:05 AM
#18
I don't think there's a way an hacker can change QR codes if the characters of the wallet is properly double checked.

In theory, they can intercept the data read from the QR codes and change them into their own. I never heard anything like that tho.

Anyway, if you double-check everything, regardless of whether there's a malware or not, then you'll still be safe most of the time.
sr. member
Activity: 1204
Merit: 388
December 09, 2019, 04:50:59 PM
#17
Clipboard hacking is becoming an hacking trend now. Let's say we have two devices, a laptop and a mobile device, it will be easier/safer if we scan the wallet QR from our mobile device and do payment from there. I don't think there's a way an hacker can change QR codes if the characters of the wallet is properly double checked.
legendary
Activity: 2534
Merit: 6080
Self-proclaimed Genius
December 09, 2019, 03:59:46 AM
#16
On Windows 10 Clipboard default copied on for your history.
Setting >> Clipboard
-snip-
I am not sure it will help to get hacked when someone knowing the clipboard history file.
That wont change anything regarding clipboard hijacking.
The setting wont disable your clipboard, it just saves the previous copied text and images so if you accidentally copied another and the source was closed,
you can visit the history (Win+V) to get your previous copied text.
The clipboard hijacker can still change what's saved in the clipboard whether it has history or just the default.
In terms of functionality, I prefer it switched on.

If you really need to keep those malwares/viruses at bay, even a free, regularly updated Antivirus like Avira will work.
hero member
Activity: 1358
Merit: 635
December 09, 2019, 03:03:48 AM
#15
On Windows 10 Clipboard default copied on for your history.
Setting >> Clipboard


Off button for mitigation avoid,
I am not sure it will help to get hacked when someone knowing the clipboard history file.



Right, to be on the safe side  that button should in the off state as well as "Shared across devices'-button in "Shared experience" section of the Settings.
legendary
Activity: 2366
Merit: 2054
December 08, 2019, 11:11:36 PM
#14
can you tell me just turn it off can help us totally safe from Clipboard attacks, please.
I am not sure off it button can help you totally safe your PC, Even they can see what you are doing on PC to perform future.
read this: https://bitcointalksearch.org/topic/m.53211451
legendary
Activity: 2044
Merit: 1018
Not your keys, not your coins!
December 08, 2019, 09:13:40 PM
#13
On Windows 10 Clipboard default copied on for your history.
Setting >> Clipboard
[ ... ]
Off button for mitigation avoid,
I am not sure it will help to get hacked when someone knowing the clipboard history file.
I have not known about that one before I saw your post. It looks great step to help prevent compromise on clipboard but can you tell me just turn it off can help us totally safe from Clipboard attacks, please.
hero member
Activity: 3150
Merit: 636
DGbet.fun - Crypto Sportsbook
December 08, 2019, 07:25:16 PM
#12
Prevention at the beginning is the best so that you'll avoid these clipboard hacks/malware. Copying your address through looking and verifying it from time to time would not take a very long time. If you manually do it, just to be safe it's a way to secure yourself from these clipboard hacks.

Double check, never download apps that you are not aware. Avoid clicking those pop up ads that tells you, you've won millions on your browser and if you've seen your browser to have that kind of ad, obviously you're already infected by such.
legendary
Activity: 2366
Merit: 2054
December 08, 2019, 07:04:45 PM
#11
On Windows 10 Clipboard default copied on for your history.
Setting >> Clipboard


Off button for mitigation avoid,
I am not sure it will help to get hacked when someone knowing the clipboard history file.
legendary
Activity: 2296
Merit: 1014
December 08, 2019, 06:42:15 PM
#10
In fact, you did not say anything specific. A much more important thing is how the virus enters your system.
Agree but even more important is how to prevent any virus to enter your system.
I mean, you can always go higher/better way of dealing with security here.
Prevent damage, not heal wounds.
legendary
Activity: 2730
Merit: 7065
December 08, 2019, 01:57:14 PM
#9
Another thing you can do in case you got infected with a clipboard malware is to not copy and paste the entire address. Leave the last couple of characters out and write them down manually after you paste the address. That way your address wont get recognized as a valid address and the malware wont replace it. This was suggested a while ago but I can't remember by whom.
legendary
Activity: 2128
Merit: 1293
There is trouble abrewing
December 08, 2019, 01:06:40 PM
#8
another way of avoiding the effects of this type of malware is to use address books. they can be used for most use cases specially if you are making deposits and withdrawals from a service such as an exchange that gives you a fixed address, you can add the exchange address to your wallet's address book (sometimes called contacts) and if the exchange offers that, you can add your (desktop or cold) wallet address to its pre-defined list of addresses that you withdraw to.

i also think using BIP21 links (with bitcoin:address) prevent the hijackers from changing anything.
hero member
Activity: 1806
Merit: 672
December 08, 2019, 12:42:12 PM
#7
Double checking your wallet address is one of the unspoken rules when it comes to crypto transactions since this is just your added precaution that you are indeed placing the right address for the transaction. Checking only the first five and last five characters of your address is not enough since the similarities don't start and end there so I think the best thing to do is to check the entire crypto address before you complete/enter the transaction.  Also the best way to avoid this is to actually have the smarts not to download any suspicious things found in the internet since you are just risking your computer system more because of what you found online.
hero member
Activity: 1750
Merit: 589
December 08, 2019, 11:43:45 AM
#6
Number 2 doesn't really address clipboard hacking. Also, its much suitable to use the term scamming instead of hacking. Most traders actually make the clipboard mistake when being in a hurry and well, almost anyone of us knows how to check what we actually copied to what we actually pasted. It's a lot more recommended to let what you copied pass through a notepad first then double checking it there which makes it a bit more easier, plus when you copy it again, at the very least, the copied address would be what you exactly needed, and would prevent further mistakes.
member
Activity: 136
Merit: 39
December 08, 2019, 10:28:16 AM
#5
Use UBUNTU your system can be barly hacked by this clipboard malware.
hero member
Activity: 2814
Merit: 618
Leading Crypto Sports Betting & Casino Platform
December 08, 2019, 09:10:57 AM
#4
There are many scammer or hacker curiously waiting to get your fund to them. Clipboard hacking is one of their way of taking your money. But, by following few things, you can simply avoid the Clipboard.
1)   Check what you copied and paste to the recipient address. At least, try to check first 5 character and last 5 character before pressing send bottom.
2)   Most cases, malware / spam ware are sent to your pc while you browse or download something. So please use an antivirus which can prevent or make you alert if you visit something unsecured.
3)   Don’t depend on clipboard all the time. If you get trapped, Some time, you copy BNB ( BEP2)  wallet though, it will paste the pre inserted wallet. So, try to avoid the copying dependency.


i always double check my address when i have to sent the bitcoins to anyone. Most mistakes which people make while manually checking the address is that they check the first few letters and the last few letters of the address and ignore in between characters, which is wrong approach. We should check the whole address carefully before sending the amount.
legendary
Activity: 1904
Merit: 1563
December 08, 2019, 08:28:03 AM
#3
This is similar to LoyceV's How to lose your Bitcoins with CTRL-C CTRL-V which can alter your clipboard when someone does copy/pasting their crypto address and replaces it with an address that belongs to the attacker

When I knew that this cyber attack was possible, I make sure that I double checked every character in my address before making any deposit and withdrawal in an exchange or wallet.  I think this is the only solution for this problem as of now other than changing your OS and keeping your applications up to date.
sr. member
Activity: 1512
Merit: 292
www.cd3d.app
December 08, 2019, 07:27:22 AM
#2
In fact, you did not say anything specific. A much more important thing is how the virus enters your system.

Quote
Recently, 360 Security Center discovered a new type of actively spreading CryptoMiner, ClipboardWalletHijacker. The Trojan monitors clipboard activity to detect if it contains the account address of Bitcoin and Ethereum. It tampers with the receiving address to its own address to redirect the cryptocurrency to its own wallet. This kind of Trojans has been detected on more than 300 thousand computers within a week.

https://blog.360totalsecurity.com/en/new-cryptominer-hijacks-your-bitcoin-transaction-over-300000-computers-have-been-attacked/
member
Activity: 125
Merit: 10
December 06, 2019, 07:16:57 AM
#1
There are many scammer or hacker curiously waiting to get your fund to them. Clipboard hacking is one of their way of taking your money. But, by following few things, you can simply avoid the Clipboard.
1)   Check what you copied and paste to the recipient address. At least, try to check first 5 character and last 5 character before pressing send bottom.
2)   Most cases, malware / spam ware are sent to your pc while you browse or download something. So please use an antivirus which can prevent or make you alert if you visit something unsecured.
3)   Don’t depend on clipboard all the time. If you get trapped, Some time, you copy BNB ( BEP2)  wallet though, it will paste the pre inserted wallet. So, try to avoid the copying dependency.
Jump to: