There is a topic regarding that Saefko Trojan:
https://bitcointalksearch.org/topic/m.52115137
No need to open more duplicates
Topic: [WARNING] RAT(Remote Access Trojan) - The New Malware! (Read 160 times)
The important factor that should be noted here is RAT will be a threat to Bitcointalk forum also. It scans for few websites in the browser history where "bitcointalk.org" is one among them.
In the crypto category, it scans "coindesk.com", "coinbase.com", "binance.com" etc.
In the crypto category, it scans "coindesk.com", "coinbase.com", "binance.com" etc.
Actually, if it is a RAT, you are in trouble anyway.
A RAT (Remote Administration Tool) gives the attacker full access (under installed permissions) to your system.
It doesn't really matter what it is searching for upon infection.
An attacker can always simply download additional payload onto your system to do additional stuff (e.g. looking for wallet files, passwords, mnemonic codes in text files, etc..).
The point is.. if you are infected with a RAT-like kind of malware, your system is owned by the attacker. And he can do whatever he wishes.
So, any RAT is extremely dangerous. The one you mentioned would not be different at all.
Recently, the ThreatLabZ team of cybersecurity firm Zscalar has written on a blog that they came across a malware called Remote Access Trojan(RAT) which is available on internet that targets cryptocurrency users. This RAT is called "Saefko". When a user opens an email attachment or downloading an application or game that is infected, RATs will automatically get downloaded.
The list of activities it is interested in is not limited to crypto only but it includes: credit card use; gaming activity; activities related to checking crypto news and using crypto exchanges; Instagram; Facebook; Google+; Gmail; shopping; and checking financial/business news.
The important factor that should be noted here is RAT will be a threat to Bitcointalk forum also. It scans for few websites in the browser history where "bitcointalk.org" is one among them.
In the crypto category, it scans "coindesk.com", "coinbase.com", "binance.com" etc.
Users should be aware that they should not open attachments or download apps from an untrusted sources.
Read here for more details: Source
The list of activities it is interested in is not limited to crypto only but it includes: credit card use; gaming activity; activities related to checking crypto news and using crypto exchanges; Instagram; Facebook; Google+; Gmail; shopping; and checking financial/business news.
The important factor that should be noted here is RAT will be a threat to Bitcointalk forum also. It scans for few websites in the browser history where "bitcointalk.org" is one among them.
In the crypto category, it scans "coindesk.com", "coinbase.com", "binance.com" etc.
Users should be aware that they should not open attachments or download apps from an untrusted sources.
Read here for more details: Source
Jump to: