Advertisement Found Online to Sell Malware That Infects Bitcoin ATMs
Trend Micro, a security software manufacturer that is based out of Tokyo, recently published a post on August 7th that they had found a new malware software online. This software is designed specifically to attack ATMs for Bitcoin, and it can easily be purchased online.
The blog post says that the company selling this access is an “apparently established and respected” user, who posted the advertisement on the Dark Net. The creators charge buyers $25,000 to gain access to the materials, which comes with a card that has EMV and near-field communication (NFC) capabilities.
When EMV chips were originally invented, they were used by credit card providers used for storing data in a much simpler way than magnetic stripes. NFC is a technology that will connect two different electronic devices, but without any wired connection.
The problem with this malware is that it brings to like a vulnerability that is found in the Bitcoin ATMs already. When the owner of the malware card puts it into an ATM, they will received 6,750 dollars, euros, or pounds, but in the form of Bitcoin. There is been 100 reviews on the website so far about the malware card, both concerning the software and related products.
There is another thread on this forum that provides a similar malware, which has since been updated so that it includes EMV technology. When it is used with the ATM, it disconnects the machine from the rest of the network, which prevents the alarms from going off in the first place. To remedy this problem, Trend Micro said,
“As long as there is money to be made — and there is quite a bit of money in cryptocurrencies — cybercriminals will continue to devise tools and to expand to lucrative new ‘markets.’ As the number of Bitcoin ATMs grows, we can expect to see more forms of malware targeting cryptocurrency ATMs in the future.”
Duo Security performed their own study separately, where they found an entire network on Twitter that is rich with crypto scam bots that promote giveaways that lead nowhere. The researchers checked 88 million Twitter accounts, where they found that there were 15,000 bots that that were spreading these kinds of posts. Each one would advertise either a false business or one that is real but is not the originator.
Unfortnuately, these types of hacks have not been minimized to solely the cryptocurrency world. Valve Corporation found a threat to their Steam video game marketplace recently in July.
They were forced to remove a game that was underhandedly mining for Monero while unsuspecting players participated in gameplay. They found the infiltrator when many users reported a problem during setup, which they likened to a Trojan virus, along with malware that appeared to be a Steam launcher.