Blockchain.info malware | Bitcointalksearch.org

stomachgrowls

hero member

Activity: 3010

Merit: 794

Quote from: smyslov on April 02, 2019, 07:28:11 AM

Quote from: OmegaStarScream on December 29, 2018, 01:23:16 PM

There are members in the forums (probably bots) spreading some Google drive links which according to them should contain Blockchain's desktop wallet.

As obvious as it is, I thought I should warn everyone that It's malware. If you see similar posts, don't download anything and make sure to report it.

You're a newbie if you fall for this, we all know what is the trusted wallet for Bitcoin and they are popular and you know the official downloads, if you download from untrusted sources, you will likely get hacked, newbies should educate themselves first on how to secure their coins and where to get the right wallet.

You are necrobumping this thread man.No need for this to be bumped up yet those google drive links doesnt exist anymore i presume.

As newbies,it cant really be avoided for sometime to download links without even verifying if it came from trusted source or websites thats why a little bit research is needed it doesnt really cost an arm and leg.

smyslov

sr. member

Activity: 2030

Merit: 269

Quote from: OmegaStarScream on December 29, 2018, 01:23:16 PM

There are members in the forums (probably bots) spreading some Google drive links which according to them should contain Blockchain's desktop wallet.

As obvious as it is, I thought I should warn everyone that It's malware. If you see similar posts, don't download anything and make sure to report it.

You're a newbie if you fall for this, we all know what is the trusted wallet for Bitcoin and they are popular and you know the official downloads, if you download from untrusted sources, you will likely get hacked, newbies should educate themselves first on how to secure their coins and where to get the right wallet.

seoincorporation

legendary

Activity: 3346

Merit: 3130

Quote from: OmegaStarScream on January 11, 2019, 02:26:37 PM

Quote from: seoincorporation on January 10, 2019, 12:54:52 PM

The malware has been decoded in the next thread: https://bitcointalksearch.org/topic/we-need-some-help-to-decode-a-hacker-addon-5083876

User nuno12345 makes great work and even post the addys of the thief. The malware doesn't only affect blockain.info (now blockchain.com) wallet. As we can see it steal info from:

As far as I know, that's an extension for Chrome while the one I'm referring to is an executable where the damage could be much worst.

Sorry for a moment i think you were talking about the same malware, looks like hackers are really motivated with bitcoin, is the easy money for them nowadays. We have to be careful with each step we make. I use linux and it makes me feel more secure, at least i don't have to care about executables.

OmegaStarScream

staff

Activity: 3500

Merit: 6152

Quote from: seoincorporation on January 10, 2019, 12:54:52 PM

The malware has been decoded in the next thread: https://bitcointalksearch.org/topic/we-need-some-help-to-decode-a-hacker-addon-5083876

User nuno12345 makes great work and even post the addys of the thief. The malware doesn't only affect blockain.info (now blockchain.com) wallet. As we can see it steal info from:

As far as I know, that's an extension for Chrome while the one I'm referring to is an executable where the damage could be much worst.

seoincorporation

legendary

Activity: 3346

Merit: 3130

The malware has been decoded in the next thread: https://bitcointalksearch.org/topic/we-need-some-help-to-decode-a-hacker-addon-5083876

User nuno12345 makes great work and even post the addys of the thief. The malware doesn't only affect blockain.info (now blockchain.com) wallet. As we can see it steal info from:

Code:

    "permissions": [
        "activeTab",
        "tabs",
        "cookies",
        "*://github.com/*",
        "*://api.github.com/*",
        "*://exmo.me/*",
        "*://*.twitter.com/*",
        "*://*.coinbase.com/*",
        "*://qq.com/*",
        "*://*.hbg.com/*",
        "*://hitbtc.com/*",
        "*://twitter.com/*",
        "*://*.binance.com/*",
        "*://*.localbitcoins.com/*",
        "*://localbitcoins.com/*",
        "*://blockchain.com/*",
        "*://*.exmo.com/*",
        "*://cryptodraw.org/*",
        "*://exmo.com/*",
        "*://*.live.com/*",
        "*://bitfinex.com/*",
        "*://hbg.com/*",
        "*://*.yahoo.com/*",
        "*://google.com/*",
        "*://*.bitfinex.com/*",
        "*://*.hitbtc.com/*",
        "*://coinbase.com/*",
        "*://*.huobi.com/*",
        "*://*.google.com/*",
        "*://*.exmo.me/*",
        "*://huobi.com/*",
        "*://yahoo.com/*",
        "*://*.blockchain.com/*",
        "*://myetherwallet.com/*",
        "*://binance.com/*",
        "*://*.myetherwallet.com/*",
        "*://live.com/*",
        "*://*.qq.com/*"
    ],

sunsilk

hero member

Activity: 3038

Merit: 634

Thanks for informing us, Id remind other members if ever someone claims that thing again. And will keep on reminding newbies that dont ever try to download any file through a google drive or any untrusted site.

I'll keep on watching them cos' they might reason out for another thing just to bait that virus.

cissrawk

sr. member

Activity: 1218

Merit: 410

Secure your crypto : https://notyourkeys.org

Yes i saw that thread in bitcoin discussion. I tried to downloaded it on my unused laptop and scan it on virustotal, it contain trojan and some other malware. Glad that thread already trashed, since i don't see it anymore in my post history.

bL4nkcode

copper member

Activity: 2142

Merit: 1305

Limited in number. Limitless in potential.

Never saw some thread(s) that is being mentioned in OP, but if someone did, then ignore them and make sure to click the report button.

Don't ever click or download any software on that link, coz probably it contains with malware not unless it was an announcement from their official website or so.

Thanks for informing the community btw.

OmegaStarScream

staff

Activity: 3500

Merit: 6152

There are members in the forums (probably bots) spreading some Google drive links which according to them should contain Blockchain's desktop wallet.

As obvious as it is, I thought I should warn everyone that It's malware. If you see similar posts, don't download anything and make sure to report it.

Topic: Blockchain.info malware (Read 226 times)