Malware that can steal all your cryptos and how to avoid it

Ransomware

Image by mohamed Hassan / Pixabay

How do you get infected?

  • Spammy emails in your Inbox, delivering dubious links.
  • Unofficial downloads from external websites or P2P software (like BitTorrent).
  • Exploits in non-updated operative systems (OS), i.e. Windows XP or old versions of firmware in IoT devices (remember these first three as the “evil triad”).
  • A targeted attack specially planned and designed for one objective, often institutional (organizations and companies).

Useful tips

  • Keep updated the OS, antivirus, and firmware of all your smart devices.
  • Don’t open links or attached files from dubious emails.
  • Download files and software only from the official websites (remember these first three as the “shield triad”).
  • Make backups of all your important information and files in external devices, preferably offline.
  • In case of infection, go to helping websites like No More Ransom or call the cybernetic division of your local authorities. Paying the ransom directly isn’t recommended and its success isn’t guaranteed.

Keyloggers

Image by Gerd Altmann / Pixabay

How do you get infected?

  • The evil triad, as we said before.
  • Fake websites and browser extensions (phishing).
  • Infected web domains, which means targeted attacks to services like vulnerable shops and exchanges.
  • Someone left a funny little device connected to your computer, like a dubious USB adapter or an extra wire (it’s a hardware keylogger).

Useful tips

  • Apply the reliable shield triad, as we said before.
  • Besides the antivirus, make sure you have a cybersecurity solution called anti-keylogger.
  • Record your credentials and passwords in the browser of your usual device, or use software to administrate your credentials.
  • Avoid phishing sites and apps just by looking at the URL, that is always different from the original.
  • Pay attention to the news of your favorite websites and services: they should announce its customers if they’re under cyberattack.
  • Don’t leave connected unknown hardware in your device.

Remote Access Trojan (RAT)

Image by StockSnap / Pixabay

How do you get infected?

  • The evil triad, worse than ever. Indeed, is very common to find it hidden inside cracked games and software.
  • Using dubious bots in Telegram.

Useful Tips

  • Apply the shield triad, and you’ll be fine!
  • Additionally, you can always look up for comments and reviews from other users of the apps and programs that you’re going to download. Including the bots in Telegram, yes.

Clipper / Clipboard hijacker

Image by Pete Linforth / Pixabay

How do you get infected?

  • Evil triad again, yes. This time, the most common infection vector is fake or infected apps on the Play Store.
  • Adobe Flash or other fake banners ads on dubious websites.

Useful Tips

  • Apply the shield triad (it works for almost everything).
  • Pay attention to the wallet addresses! It doesn’t matter if you think you don’t have any clipper on your device (these don’t produce any visible symptoms). Compare and verify your original address and the pasted version twice before share or send.
  • If possible, prefer using your funds through QR codes instead of text.

Phishing

Image by leo2014 / Pixabay

How do you get infected?

  • Evil triad, especially via email.
  • Dubious adds at the top of the browser results. Anyone (even malicious actors) can pay for that kind of add, so, they’ll be there till someone reports it.
  • The hacker/scammer found your phone in some way and it’s calling you, impersonating some authority.

Useful Tips

  • Shield triad at the rescue again.
  • Access your most-used websites through the bookmarks/favorites list, and avoid the browser results as much as you can.
  • Be suspicious of any message/mail/call in which someone is asking you for personal credentials or money. Remember: the companies/organizations don’t use to do that at all.
  • If you’re going to send/receive cryptocurrency through a website or app, always check the URL and previous reviews.

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store