News Report
May 18, 2022

Microsoft warns of “cryware” attacks that clear out crypto wallets

Microsoft warns of “cryware” attacks that clear out crypto wallets
No, Elon won’t give you any cash.

Microsoft has released a comprehensive study of so-called cryware, attacks that can attack crypto hot wallets in an effort to, well, steal your apes.

“Cryware are information stealers that collect and exfiltrate data directly from non-custodial cryptocurrency wallets, also known as hot wallets. Because hot wallets, unlike custodial wallets, are stored locally on a device and provide easier access to cryptographic keys needed to perform transactions, more and more threats are targeting them,” writes the Microsoft 365 Defender Research Team.

The researchers saw multiple types of attacks including ransomware attacks that locked users hot wallets until a ransom was paid. The cryware also looks for data that could indicate that the user has a crypto wallet on their computer and then attacks it, looking for keys and seed phrases.

“To find hot wallet data such as private keys, seed phrases, and wallet addresses, attackers could use regular expressions (regexes), given how these typically follow a pattern of words or characters. These patterns are then implemented in cryware, thus automating the process. The attack types and techniques that attempt to steal these wallet data include clipping and switchingmemory dumpingphishing, and scams,” the team wrote.

Microsoft warns of “cryware” attacks that clear out crypto wallets
Microsoft 365 Defender Research Team

Cryware attacks have risen in the past year, hitting a high point last December. Microsoft recommends using antivirus software and being very careful when cutting and pasting wallet addresses. They have found a number of viruses that will “clip and switch,” a process that changes wallet addresses as they’re pasted into a text field.

Microsoft warns of “cryware” attacks that clear out crypto wallets
Microsoft 365 Defender Research Team

Other cryware looks for seed phrases on your machine.

“For example, in 2021, a user posted about how they lost USD78,000 worth of Ethereum because they stored their wallet seed phrase in an insecure location. An attacker likely gained access to the target’s device and installed cryware that discovered the sensitive data. Once this data was compromised, the attacker would’ve been able to empty the targeted wallet,” wrote the researchers.

The report goes on to describe other attack vectors including Mars Stealer, a file exfiltration system that will steal wallet files and upload them to a central server. Their advice? Click carefully, be diligent when moving your crypto, and never believe scammers when they tell you you’ll get rich quick.

Microsoft warns of “cryware” attacks that clear out crypto wallets

Read related posts:

Disclaimer

In line with the Trust Project guidelines, please note that the information provided on this page is not intended to be and should not be interpreted as legal, tax, investment, financial, or any other form of advice. It is important to only invest what you can afford to lose and to seek independent financial advice if you have any doubts. For further information, we suggest referring to the terms and conditions as well as the help and support pages provided by the issuer or advertiser. MetaversePost is committed to accurate, unbiased reporting, but market conditions are subject to change without notice.

About The Author

John Biggs is an entrepreneur, consultant, writer, and maker. He spent fifteen years as an editor for Gizmodo, CrunchGear, and TechCrunch and has a deep background in hardware startups, 3D printing, and blockchain. His work has appeared in Men’s Health, Wired, and the New York Times. He has written eight books including the best book on blogging, Bloggers Boot Camp, and a book about the most expensive timepiece ever made, Marie Antoinette’s Watch. He lives in Brooklyn, New York.

More articles
John Biggs
John Biggs

John Biggs is an entrepreneur, consultant, writer, and maker. He spent fifteen years as an editor for Gizmodo, CrunchGear, and TechCrunch and has a deep background in hardware startups, 3D printing, and blockchain. His work has appeared in Men’s Health, Wired, and the New York Times. He has written eight books including the best book on blogging, Bloggers Boot Camp, and a book about the most expensive timepiece ever made, Marie Antoinette’s Watch. He lives in Brooklyn, New York.

Hot Stories

Missed Bitcoin’s Rise? Here’s What You Should Know

by Victoria d'Este
December 20, 2024
Join Our Newsletter.
Latest News

From Ripple to The Big Green DAO: How Cryptocurrency Projects Contribute to Charity

Let's explore initiatives harnessing the potential of digital currencies for charitable causes.

Know More

AlphaFold 3, Med-Gemini, and others: The Way AI Transforms Healthcare in 2024

AI manifests in various ways in healthcare, from uncovering new genetic correlations to empowering robotic surgical systems ...

Know More
Read More
Read more
Transak Increases Accessibility To Memecoins By Listing 11 New Tokens
Markets News Report Technology
Transak Increases Accessibility To Memecoins By Listing 11 New Tokens
December 20, 2024
Missed Bitcoin’s Rise? Here’s What You Should Know
Opinion Business Markets Technology
Missed Bitcoin’s Rise? Here’s What You Should Know
December 20, 2024
The Explosive Rise of Crypto Theft in 2024 with North Korea Leading the Charge
Opinion Business Markets Software Technology
The Explosive Rise of Crypto Theft in 2024 with North Korea Leading the Charge
December 20, 2024
Multiple Network Unveils Brand Upgrade, Focusing On Privacy Protection And Data Acceleration 
News Report Technology
Multiple Network Unveils Brand Upgrade, Focusing On Privacy Protection And Data Acceleration 
December 20, 2024