It seems that the Jigsaw malware entered the market once again to steal Bitcoin from consumers. According to ZDNet, the so called ‘Jigsaw’ ransomware has been revised by hackers that want to steal Bitcoin from other users. The system does not seem to be complicated to use and it is very effective.
The Jigsaw ransomware first appeared in the crypto world some years ago, more precisely in April 2016. It worked by holding files and information of users until the interested individual paid the ransom in Bitcoin.
But now, there is a new version of this ransomware that has been created to steal Bitcoin in an innovative way without being intrusive. It modifies the BTC address that a user inputs. In this way, it is possible to redirect the payment to the hacker’s wallet, something that results in lost virtual currencies for the victim.
It is important to mention that the ransomware has been improved. Cryptocurrency addresses may look completely different between each other. But with a program such as VanityGen, the hacker is able to rick the user and create virtual currency addresses that are very similar, just changing a few characters.
The hackers have been very successful and were able to steal over 8.4 Bitcoin something like $61,000 dollars with Bitcoin being traded around $7,300 dollars.
As reported by Fortinet, there are similar projects that modify crypto addresses and that are being advertised on dark web forum sites. Indeed, some individuals believe that there are programs that use the same tactics. But this method of cybercrime has not been mentioned in a report from the security firm Malwarebytes.
The company released the report on July the 17th, and informed that the cryptojacking attacks were the most famous ones. Indeed, cryptojacking methods dominate the threat landscape.
The cybercrime Tactics & Techniques Report for Q2 2018 reads as follows:
“Cryptomining detections are slowly declining; however, as one of the top two detections for both businesses and consumers, they still dominate the threat landscape.”
But in the third quarter of 2018, Malwarebytes explains that criminals are not getting the return on investment (ROI) from cryptomining they were expecting. And the cryptojacking craziness will stabilize as the crypto market.
In the future, it is possible that the clipboard-substitution will become a bigger threat for the crypto market. This system is less intrusive and may be more profitable that other systems currently in the market. It is very important to always double or triple check that the address written is the desired one.