Zeus variant targets users of China's biggest Bitcoin exchange

Share this article:

A variant of the Zeus P2P/Gameover trojan has been identified that will allow an attacker to take over the account of anyone using China's biggest Bitcoin platform, BTC China.

The malware begins working when an infected user attempts to log into the BTC China website, Etay Maor, fraud prevention solutions manager at Trusteer, wrote in a blog post, adding that when this occurs, the victim's username and password is stolen and the session is paused briefly.

The reason for suspending the session is because the attacker may need a one-time password, Maor said, explaining the malware will use simple social engineering techniques, combined with HTML injection, to request it.

“Once the cybercriminal has the victim's credentials he can easily perform an account takeover and assume control of the Bitcoins associated with the account,” Maor wrote.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

Information sharing requires breaking down barriers, White House cyber guru says

Information sharing requires breaking down barriers, White House ...

The White House has advanced an agenda to promote and facilitate information sharing on security threats and vulnerabilities.

Worm variant of Android ransomware, Koler, spreads via SMS

Worm variant of Android ransomware, Koler, spreads via ...

Upon infection, the Koler variant will send an SMS message to all contacts in the device's address book.

Patch for Windows flaw can be bypassed, prompts temporary fix from Microsoft

Patch for Windows flaw can be bypassed, prompts ...

The Windows zero-day received a patch last week, but the fix can still be bypassed by crafty attackers.