Wallet as trojan - page 2. | Bitcointalksearch.org

aleksej996

sr. member

Activity: 490

Merit: 389

Do not trust the government

Quote from: nikisev on September 28, 2017, 03:47:19 PM

I wonder if there is a history of infecting user computers with wallet applications?
I mean its a lot of wallets and, like, you always install uninstall them.
Sure i have antivirus but its a lot of very complex code deployed around.

I can give you an example of one. There is a Litecoin wallet that has a very advanced malware on it called Sality https://en.wikipedia.org/wiki/Sality.
It is a real pain to get rid of it, so be very careful.

I would suggest to not run any non-open source program on the same pc you have any coins or anything of value on, including an open source OS. But it is your choice on how much you care about those things.

wanispwnz

full member

Activity: 224

Merit: 100

I agree it might be pain in the ass and with another device it would be easier but I really hate
maintaining more devices and this option fits my needs. Cheesy

BillyBobZorton

legendary

Activity: 1204

Merit: 1028

Quote from: nikisev on September 29, 2017, 08:00:26 AM

Quote from: wanispwnz on September 28, 2017, 08:47:14 PM

I have a little trick for this but it may sound very annoying for many people. Cheesy

As I am very distrustful person, whenever I try untrusted/unknown wallet I install it on a virtual computer first.
So far I didn't find out any suspicious activity but I still think it's worth it. Cheesy

Yes Vm is always good.
Still Wallet takes a lot of time and space to sync. So when you are sure its safe you have to move it back.Which is not very pleasant procedure
And simply setting it up wont do much good. malware may be activated at certain time. Like at night to do evil things.
Does any body knows good scanner for github repo. I had one once, i cannot remember what it was.
Otherwise you need some guardicore or something to monitor situation when software actually runs.

I wouldn't trust Virtual Machines as enough prevention for potential hacks to be honest. If you really want to install risky wallets on the altcoin section, get an additional computer, such as a laptop that contains no confidential data, then install all the crap you want on there and stop worrying about if your main computer is safe against altcoin wallets potentially infected with malware. It's just too much stress to deal with VM, antiviruses, firewalls etc.. better get a secondary computer.

nikisev

full member

Activity: 266

Merit: 101

Im the very decease you pretend to be

Quote from: wanispwnz on September 28, 2017, 08:47:14 PM

I have a little trick for this but it may sound very annoying for many people. Cheesy

As I am very distrustful person, whenever I try untrusted/unknown wallet I install it on a virtual computer first.
So far I didn't find out any suspicious activity but I still think it's worth it. Cheesy

Yes Vm is always good.
Still Wallet takes a lot of time and space to sync. So when you are sure its safe you have to move it back.Which is not very pleasant procedure
And simply setting it up wont do much good. malware may be activated at certain time. Like at night to do evil things.
Does any body knows good scanner for github repo. I had one once, i cannot remember what it was.
Otherwise you need some guardicore or something to monitor situation when software actually runs.

Thekool1s

legendary

Activity: 1512

Merit: 1218

Change is in your hands

Quote from: Kakmakr on September 29, 2017, 02:35:34 AM

Quote from: wanispwnz on September 28, 2017, 08:47:14 PM

I have a little trick for this but it may sound very annoying for many people. Cheesy

As I am very distrustful person, whenever I try untrusted/unknown wallet I install it on a virtual computer first.
So far I didn't find out any suspicious activity but I still think it's worth it. Cheesy

You are setting yourself up for failure. Most hackers know people "Sand box" their applications to test them, so they do not steal coins on the first install. They will wait until you are have shown that you trusted the wallet or service and once you started depositing larger amounts, they will steal it. < They are not interested in small change, they want the fat cats with the big pockets >

These hackers should not be underestimated, they are not Script kiddies. ^smile^

Wow! i never thought of this, but it is quite easy for them to achieve this, just have a variable with number of times the program has been run, after lets say X runs it will run the malware etc. I am Never installing another non-open sourced wallet ever again. Thanks you for mentioning this mate.

Kakmakr

legendary

Activity: 3472

Merit: 1963

Leading Crypto Sports Betting & Casino Platform

Quote from: wanispwnz on September 28, 2017, 08:47:14 PM

I have a little trick for this but it may sound very annoying for many people. Cheesy

As I am very distrustful person, whenever I try untrusted/unknown wallet I install it on a virtual computer first.
So far I didn't find out any suspicious activity but I still think it's worth it. Cheesy

You are setting yourself up for failure. Most hackers know people "Sand box" their applications to test them, so they do not steal coins on the first install. They will wait until you are have shown that you trusted the wallet or service and once you started depositing larger amounts, they will steal it. < They are not interested in small change, they want the fat cats with the big pockets >

These hackers should not be underestimated, they are not Script kiddies. ^smile^

wanispwnz

full member

Activity: 224

Merit: 100

I have a little trick for this but it may sound very annoying for many people. Cheesy

As I am very distrustful person, whenever I try untrusted/unknown wallet I install it on a virtual computer first.
So far I didn't find out any suspicious activity but I still think it's worth it. Cheesy

BillyBobZorton

legendary

Activity: 1204

Merit: 1028

Quote from: nikisev on September 28, 2017, 03:47:19 PM

I wonder if there is a history of infecting user computers with wallet applications?
I mean its a lot of wallets and, like, you always install uninstall them.
Sure i have antivirus but its a lot of very complex code deployed around.

There is bast history of wallets being infected with malware. The altcoin section is a dangerous place to be when it comes to downloading clients. There is a ton of evidence of people trying to pass wallets as legit when they were infected with viruses, RATs, malwares, keyloggers.. you name it. There's also this trick of infecting the computer to paste addresses that belong to the hacker. So when you think you copied your address and paste it, you are pasting his address so you send him BTC.

In general, always be wary when you download anything that isn't signed by reputable people.

nikisev

full member

Activity: 266

Merit: 101

Im the very decease you pretend to be

I wonder if there is a history of infecting user computers with wallet applications?
I mean its a lot of wallets and, like, you always install uninstall them.
Sure i have antivirus but its a lot of very complex code deployed around.

Topic: Wallet as trojan - page 2. (Read 1651 times)