{"id":11380,"date":"2023-04-08T12:39:09","date_gmt":"2023-04-08T12:39:09","guid":{"rendered":"https:\/\/www.cryptoheretostay.com\/?p=11380"},"modified":"2023-04-08T12:39:11","modified_gmt":"2023-04-08T12:39:11","slug":"trustwave-spiderlabs-researchers-warn-of-new-strain-of-malware-that-drains-crypto-funds","status":"publish","type":"post","link":"https:\/\/cryptoheretostay.com\/?p=11380","title":{"rendered":"Trustwave Spiderlabs Researchers Warn of New Strain of Malware That Drains Crypto Funds"},"content":{"rendered":"<p> <script type=\"text\/javascript\">\r\namzn_assoc_placement = \"adunit0\";\r\namzn_assoc_tracking_id = \"totafreearti-20\";\r\namzn_assoc_ad_mode = \"search\";\r\namzn_assoc_ad_type = \"smart\";\r\namzn_assoc_marketplace = \"amazon\";\r\namzn_assoc_region = \"US\";\r\namzn_assoc_default_search_phrase = \"crypto\";\r\namzn_assoc_default_category = \"All\";\r\namzn_assoc_search_bar = \"false\";\r\namzn_assoc_title = \"\";\r\namzn_assoc_rows =\"1\";\r\n<\/script>\r\n<script src=\"\/\/z-na.amazon-adsystem.com\/widgets\/onejs?MarketPlace=US\"><\/script><br \/>\n<\/p>\n<p><strong>According to researchers at Trustwave Spiderlabs, a strain of malware known as Rilide is believed to be helping cybercriminals steal funds from cryptocurrency exchanges. Although the steps being taken to tackle this malware are likely to make life more difficult for cybercriminals, two researchers \u2014 Pawel Knapczyk and Wojciech Cieslak \u2014 said this alone may not be enough to \u201csolve the issue entirely.\u201d<\/strong><\/p>\n<h2>Malicious Browser Extensions<\/h2>\n<p>Researchers at Trustwave Spiderlabs recently said they discovered a new strain of malware which clandestinely draws funds from crypto wallets. According to the researchers, the malware, known as Rilide, is thought to disguise itself as a legitimate Google Drive extension. Besides giving cybercriminals the ability to monitor the browsing history of their targeted victims, Rilide enables the injection of \u201cmalicious scripts to steal funds from cryptocurrency exchanges.\u201d<\/p>\n<p>In their blog post published on April 4, the two researchers Pawel Knapczyk and Wojciech Cieslak concede that Rilide is not the first malware to use malicious browser extensions. However, the researchers said they have seen how the malware tricks users before it drains funds from their respective crypto wallets.<\/p>\n<p>\u201cWhere this malware differs is it has the effective and rarely used ability to utilize forged dialogs to deceive users into revealing their two-factor authentication (2FA) and then withdraw cryptocurrencies in the background,\u201d the researchers argued.<\/p>\n<p>While steps such as the pending enforcement of the so-called manifest v3 are expected to make life a little more difficult for cybercriminals, Knapczyk and Cieslak assert that this alone may not be enough \u201cto solve the issue entirely as most of the functionalities leveraged by Rilide will still be available.\u201d<\/p>\n<p>Meanwhile, in their warning to users, the two researchers reiterated the importance of remaining \u201cvigilant and sceptical\u201d each time they received unsolicited emails. They added that users must \u201cnever assume that any content on the internet is safe, even if it appears to be.\u201d Similarly, users should always strive to stay informed and educated about the latest events in the cybersecurity industry.<\/p>\n<p><em><strong>What are your thoughts on this story? Let us know what you think in the comments section below.<\/strong><\/em><\/p>\n<p>Terence Zimwara <\/p>\n<p class=\"article__body__author__info__about\">\nTerence Zimwara is a Zimbabwe award-winning journalist, author and writer. He has written extensively about the economic troubles of some African countries as well as how digital currencies can provide Africans with an escape route.<\/p>\n<p><i class=\"td-icon-font td-icon-linkedin\"\/><\/p>\n<p><i class=\"td-icon-font td-icon-twitter\"\/><\/p>\n<p><i class=\"td-icon-font td-icon-telegram\"\/><\/p>\n<p class=\"images_credits\"><em>Image Credits: Shutterstock, Pixabay, Wiki Commons<\/em><\/p>\n<p><strong>Disclaimer<\/strong>: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article.<\/p>\n<p>More Popular NewsIn Case You Missed It<\/p>\n<p><script type=\"text\/javascript\">\r\namzn_assoc_placement = \"adunit0\";\r\namzn_assoc_tracking_id = \"totafreearti-20\";\r\namzn_assoc_ad_mode = \"search\";\r\namzn_assoc_ad_type = \"smart\";\r\namzn_assoc_marketplace = \"amazon\";\r\namzn_assoc_region = \"US\";\r\namzn_assoc_default_search_phrase = \"bitcoin\";\r\namzn_assoc_default_category = \"All\";\r\namzn_assoc_search_bar = \"false\";\r\namzn_assoc_title = \"\";\r\namzn_assoc_rows =\"1\";\r\n<\/script>\r\n<script src=\"\/\/z-na.amazon-adsystem.com\/widgets\/onejs?MarketPlace=US\"><\/script><br \/>\n<br \/><a href=\"https:\/\/news.bitcoin.com\/trustwave-spiderlabs-researchers-warn-of-new-strain-of-malware-that-drains-crypto-funds\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>According to researchers at Trustwave Spiderlabs, a strain of malware known as Rilide is believed to be helping cybercriminals steal funds from cryptocurrency exchanges. Although the steps being taken to tackle this malware are likely to make life more difficult for cybercriminals, two researchers \u2014 Pawel Knapczyk and Wojciech Cieslak \u2014 said this alone may [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":11381,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[1],"tags":[],"class_list":["post-11380","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-crypto-updates"],"_links":{"self":[{"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/posts\/11380","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=11380"}],"version-history":[{"count":1,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/posts\/11380\/revisions"}],"predecessor-version":[{"id":11382,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/posts\/11380\/revisions\/11382"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/media\/11381"}],"wp:attachment":[{"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=11380"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=11380"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=11380"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}