Amidst the increasing number of cyber threats, the cybersecurity arm of BlackBerry has unveiled alarming insights into the world of cryptocurrency-targeting malware. Over 1.5 million cyberattacks were thwarted between March and May, with attackers actively attempting to hijack computers for cryptocurrency mining or theft.
According to the BlackBerry report, the financial, healthcare, and government sectors emerged as the primary targets of these cyberattacks. One notable malware, RedLine, has become a long-standing threat in the financial domain, aimed explicitly at harvesting cryptocurrency and banking data.
Another menacing ransomware, Clop, a variant of the CryptoMix ransomware family, has been relentlessly targeting banking and financial institutions. Clop was responsible for a data breach in the fintech banking platform Hatch Bank.
BlackBerry’s list of the most prevalent malware families includes SmokeLoader, RaccoonStealer (also known as RecordBreaker), and Vidar. SmokeLoader, an old rogue financial tool, has primarily been used by Russian-based threat actors to load crypto miners and deploy other malware.
RaccoonStealer, infamous for stealing cryptocurrency wallet data, is widely sold across the dark web. Meanwhile, Vidar is being actively employed to harvest cryptocurrency wallets.
Think only enterprises get hacked? If you’re a mid-market or small business, you still have a big target on your small or mid-size back. BlackBerry's @aboutsecurity shares why cybercriminals select targets based on impact & how much they're willing to pay. https://t.co/2LBlurWMiL
— BlackBerry (@BlackBerry) August 3, 2023
Regarding vulnerable operating systems, Linux emerged as the primary target. BlackBerry has advised organizations to regularly apply security patches to protect against hackers attempting to hijack computer resources for cryptocurrency mining. Additionally, a new strain of info stealer, named Atomic macOS, poses a risk to macOS users, targeting credentials from keychains, browsers, and crypto-wallets.
In response to the growing cybersecurity threats, OpenAI, the creator of ChatGPT and Dall-e, recently announced a $1 million cybersecurity grant program. The initiative aims to enhance and measure the impact of artificial intelligence (AI)-driven cybersecurity technologies. OpenAI declared its goal as nurturing the progress of AI-powered cybersecurity capabilities for defenders through grants and extra support.
Recent discoveries indicate a concerning development in the realm of macOS information-stealing malware. A new Hidden Virtual Network Computing (HVNC) tool, available in April 2023, allows threat actors to control macOS systems without the user’s knowledge. The agency offers a reverse shell, a remote file manager, and the ability to acquire sensitive data stealthily and establish continuity within the victim’s system. It requires a hefty $100,000 deposit to develop and boasts an update in July 2023.
Security experts urge Small Business Owners and Managed Service Providers to remain vigilant against cyber threats. Staying informed about the latest malware versions is crucial to protect systems from exploitation. By keeping up-to-date with the cybersecurity community, organizations can enhance their defenses against evolving threats and safeguard their valuable data from potential breaches.
