MassJacker malware targets those looking for pirated software

News
By published

Cyberark finds cryptocurrency jacker hiding behind fake pirated software

Abstract image of cyber security in action.
OpenVPN-protokollet - därför är det så bra (Image credit: Shutterstock)
  • Cyberark finds website promoting pirated software distributing malware
  • One of the malware variants was a cryptojacker running more than 700,000 wallets
  • One of the wallets had 600 SOL in it

Cybersecurity researchers have recently uncovered MassJacker, a new malware variant aiming to steal cryptocurrency by replacing cryptocurrency addresses in people’s clipboards.

The team from Cyberark said it recently found a website - pesktop[dot]com, which claims to offer all sorts of pirated software, but in reality, it is distributing different versions of malware, including MassJacker.

It wasn’t said what the malware was posing as, but when victims install MassJacker, it works in the background, keeping track of the computer’s clipboard. When a person copies a cryptocurrency address, it will take note, and replace it with an address belonging to the attacker. That way, when the victim pastes the address, it is pasting a different one from the one they copied, and it is sending money to the attackers instead of whoever they wanted to send it to.

Get Incogni at 55% off with code TECHRADAR

Get Incogni at 55% off with code TECHRADAR
Remove your personal information from the internet with ease. Incogni protects your online
identity and reduces unwanted robocalls and spam emails.

Preferred partner (What does this mean?

View Deal

Hundreds of thousands of dollars

Cryptocurrency addresses are impossible to memorize by heart, as they are a string of 20+ seemingly random characters - which is why most people would keep them stored somewhere, and just copy and paste whenever they wanted to send funds. Cybercriminals see this as an opportunity to steal the money, and as far as MassJacker is concerned - it seems to be working.

Cyberark says MassJacker manages more than 770,000 unique crypto addresses. While most of them were empty, 423 had $95,300 in them, at the time the report had been written. “Adding the money that was previously held in those wallets but had already been transferred out brought the total up to around $336,700,” the researchers concluded.

However, that doesn’t mean that all of that money came from MassJacker. In fact, Cyberark believes that the opposite might actually be true, and that most funds came from “other malicious activities.” That being said, cryptocurrency worth about $87,000 (600 SOL) was found sitting in a single wallet that had 350 transactions.

Via The Hacker News

You might also like

TOPICS
Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
Pirate skull cyber attack digital technology flag cyber on on computer CPU in background. Darknet and cybercrime banner cyberattack and espionage concept illustration.
Huge cybercrime attack sees 390,000 WordPress websites hit, details stolen
Android phone malware
Screen reading malware found in iOS app stores for first time - and it might steal your cryptocurrency
A digital themed isometric showing a neon padlock in the foreground, and a technological diagram of a processor logic board in the background.
LastPass 2022 hack fallout continues with millions of dollars more reportedly stolen
Pirate skull cyber attack digital technology flag cyber on on computer CPU in background. Darknet and cybercrime banner cyberattack and espionage concept illustration.
Microsoft reveals over a million PCs hit by malvertising campaign
botnet
YouTubers targeted by blackmail campaign to promote malware on their channels
An abstract image of digital security.
Hundreds of GitHub repositories hijacked to trick users into downloading malware
Latest in Security
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
An American flag flying outside the US Capitol building against a blue sky
The FCC is creating a security council to bolster US defenses against cyberattacks
Image depicting hands typing on a keyboard, with phishing hooks holding files, passwords and credit cards.
Microsoft warns about a new phishing campaign impersonating Booking.com
Ransomware
Microsoft uncovers sleuthy new XCSSET MacOS malware campaign
Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol
Meta warns of worrying security flaw hitting open source type software
Hand holding smartphone and scan fingerprint biometric identity for unlock her mobile phone
Passwordless authentication continues to grow, with biometrics helping push adoption
Latest in News
Garmin Instinct 3 in Neotropic Green
"I'm an idiot": Garmin user reveals how fixing one setting completely changed their training after months of making no progress
The main battle pass characters in Fortnite Lawless, including Midas, Sub Zero and a large wolf-man
You'll finally be able to play Fortnite on Windows 11 Arm-powered laptops as Epic Games partners with Qualcomm
DeepSeek on an iPhone
OpenAI calls on US government to ban DeepSeek, calling it ‘state-subsidized’ and ‘state-controlled’
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
Stress
Complexity of IT systems could be increasing security risks for businesses
Warhammer 40,000: Space Marine 3
Warhammer 40,000: Space Marine 3 enters development as team promises to support Space Marine 2 'with exciting content and regular updates in the coming years'
More about security
An American flag flying outside the US Capitol building against a blue sky

The FCC is creating a security council to bolster US defenses against cyberattacks
Ransomware

Microsoft uncovers sleuthy new XCSSET MacOS malware campaign
The main battle pass characters in Fortnite Lawless, including Midas, Sub Zero and a large wolf-man

You'll finally be able to play Fortnite on Windows 11 Arm-powered laptops as Epic Games partners with Qualcomm
See more latest
Most Popular
The main battle pass characters in Fortnite Lawless, including Midas, Sub Zero and a large wolf-man
You'll finally be able to play Fortnite on Windows 11 Arm-powered laptops as Epic Games partners with Qualcomm
Garmin Instinct 3 in Neotropic Green
"I'm an idiot": Garmin user reveals how fixing one setting completely changed their training after months of making no progress
DeepSeek on an iPhone
OpenAI calls on US government to ban DeepSeek, calling it ‘state-subsidized’ and ‘state-controlled’
Warhammer 40,000: Space Marine 3
Warhammer 40,000: Space Marine 3 enters development as team promises to support Space Marine 2 'with exciting content and regular updates in the coming years'
An AMD Radeon RX 9070 XT vs RX 9070 against a red two-tone background
Well, AMD's Radeon RX 9070 series launch isn't going as smoothly as we thought - and it's because retailers have inflated prices
Mark and Devon sitting in a car in Severance season 2 episode 9
Severance season 2 episode 9 recap: 7 new theories I have about 'The After Hours', and answers for Mr Bailiff, devour feculence, Svalbard, and more
An AMD Radeon RX 9070 XT made by Sapphire on a table with its retail packaging
AMD describes its recent RDNA 4 GPU launch as 'unprecedented' and promises restocking the Radeon RX 9070 XT as 'priority number one'
Wix Printful
Wix teams up with Printful for in-house print-on-demand tools
Mercedes-Benz CLA 2025
I’ve tried the new Mercedes-Benz Superscreen – and its Google Gemini-powered smarts push EV infotainment to the next level
Stress
Complexity of IT systems could be increasing security risks for businesses