Facebook Messenger Hit With Another Mining Virus
Cryptovest
Published May 02, 2018 04:51AM ET
Updated May 02, 2018 06:31AM ET
Facebook Messenger Hit With Another Mining Virus
A new cryptocurrency mining worm appeared on Facebook (NASDAQ:FB) that uses an ingenious combination of social engineering, multi-platform coordination, and rapid propagation techniques. It’s impressively sophisticated and proves once again that hackers are willing to go to great lengths to grab cryptocurrencies.
“Our Cyber Safety Solutions team identified a malicious Chrome extension we named FacexWorm, which uses a miscellany of techniques to target cryptocurrency trading platforms accessed on an affected browser and propagates via Facebook Messenger,” reported Trend Micro.
Much like Dubmine , which wreaked havoc on Messenger last year, FacexWorm propagates itself through a malicious Chrome extension that sends links to itself to everyone the victim knows on the messaging platform. This new strain, however, takes things a step further and recreates a very convincing fake YouTube page that you supposedly need the extension for.
Once infected, the victims’ computers will be directed to the hacker’s cryptocurrency platform referral links or scams instead of the legitimate pages they attempted to access. In addition, the virus also makes attempts to steal any credentials for cryptocurrency sites and Google (NASDAQ:GOOGL) accounts.
And of course, no malware package would be complete without a way to mine coins for the hacker. FacexWorm injects an obfuscated version of Coinhive’s Monero mining script into every website the victim visits.
For those who are concerned about infection, Chrome got rid of the extension, leaving the hackers almost empty-handed as they reportedly only managed to infect a small number of subjects.
Still, if you wish to prevent this kind of attack from happening, be wary of any Chrome extension requests on your browser that pop up when you click links sent by people you know. A quick search for the extension’s name followed by the word “virus” should tell you whether you should install it or not.
This article appeared first on Cryptovest
Get The News You Want
Written By: Cryptovest
Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.