Hackers started stealing cryptocurrency via Youtube video about stealing cryptocurrencies
The video advertises a tool that can generate private keys for bitcoins.
The description of the video contains links to the archive with the program, downloaded via Google Drive and Yandex.
Downloading a program to steal cryptocurrency leads to infection with a Trojan virus. It allows hackers to access the victim’s clipboard, steal files, use a webcam, and track transactions in the cryptocurrency.
Currently, the clips uploaded by the cybercriminals totaled thousands of views. The exact number of victims and the amount of damage are not reported. According to VirusTotal, the setup.exe Trojan file currently contains 2 out of 71 antiviruses.
Experts advise owners of cryptocurrencies that are victims of hackers to immediately change the passwords for financial accounts, websites, messengers and game accounts on Steam and Battle.net.
Recall that in October, ESET antivirus company specialists found traces of Casbaneiro, a cryptocurrency trojan, in the video descriptions on YouTube. The virus restricts the victim’s access to various banking sites and replaces the victim’s cryptocurrency wallet with the address of the fraudster.`