cryptocurrencies Archives

Tech Optimizer

June 9, 2025

Cryptostealing Malware Found in Printer Software Highlights Growing Supply Chain Threat

A cybersecurity incident involving Procolored printers revealed vulnerabilities in everyday hardware, as users may have downloaded malware capable of stealing cryptocurrencies like Bitcoin. Tech content creator Cameron Coward reported an antivirus alert linked to Procolored printer software, prompting an investigation by G Data researchers who found malicious code in installation files on the manufacturer's website. The identified threats included a remote access tool (Win32.Backdoor.XRedRAT.A) and a cryptocurrency wallet stealer (MSIL.Trojan-Stealer.CoinStealer.H). Compromised files were last updated in October 2024 and distributed through official channels. The company initially denied the issue but later removed the downloads from their website in May 2025 and acknowledged the malware might have been introduced via USB transfers. An analysis of an attacker’s wallet showed a total of 9.3 BTC accumulated across 330 transactions before it was emptied. Cybersecurity experts recommend that users conduct antivirus scans and consider reformatting drives and reinstalling operating systems if infections are suspected.

AppWizard

May 8, 2025

Messaging App Used by Trump Admin Hacked – Attacker May Have Stolen Data From Hundreds of Government Employees: Report

A hacker breached TeleMessage, a messaging app used by members of the Trump administration and US government officials, in a quick attack that reportedly took 15 to 20 minutes. The breached materials included sensitive data related to Customs and Border Protection (CBP) and cryptocurrency exchange Coinbase. A screenshot from the control panel showed names, phone numbers, and email addresses of CBP employees, indicating access to data of hundreds of US government personnel. Michael Waltz, the recently dismissed national security adviser, was noted to have used TeleMessage during a cabinet meeting.

BetaBeacon

April 19, 2025

What Is ‘Idle Mine’? This Free iOS and Android Game Pays Real Bitcoin

Idle Mine is a mobile game that allows players to earn real Bitcoin rewards by running a gem mining operation and gradually increasing earnings over time.

AppWizard

April 18, 2025

Warner Bro’s Big Bet of Minecraft

tastylive Inc. provides educational content that does not constitute trading or investment advice and is not suitable for every individual. It does not offer personalized investment advice, make specific recommendations, or engage in securities trades. Investors should be aware of the risks associated with trading securities, futures, and digital assets, which can lead to losses exceeding the initial investment. tastytrade, Inc. is a registered broker-dealer that provides self-directed brokerage accounts but does not offer financial advice or investment recommendations. A Marketing Agreement exists between tastytrade and tastylive for promoting brokerage services, but this does not imply endorsement. tastycrypto is provided by tasty Software Solutions, LLC, which operates independently from tastylive. The value of cryptocurrencies can diminish to zero, highlighting the risks of cryptocurrency trading.

Winsage

April 8, 2025

Neptune RAT malware is hijacking Windows PCs, holding them for ransom and stealing passwords

Cybercriminals have released a new malware strain called Neptune RAT, which targets Windows PCs and is capable of stealing cryptocurrencies and passwords, as well as holding data for ransom. It features a crypto clipper that can alter cryptocurrency wallet addresses, a password-stealing function affecting over 270 applications, and ransomware capabilities that lock files until a ransom is paid. The malware can disable antivirus software, monitor victims' screens in real-time, and has the ability to wipe a PC. It is distributed through platforms like GitHub, Telegram, and YouTube, making it difficult for cybersecurity researchers to analyze. Users are advised to be cautious with downloads, consider identity theft protection services, and practice safe browsing habits to mitigate risks.

Tech Optimizer

April 2, 2025

Thousands of PostgreSQL servers are being hijacked to mine crypto

Researchers at Wiz have identified a cryptojacking campaign by a group called JINX-0126, targeting over 1,500 misconfigured PostgreSQL servers by exploiting weak login credentials. The attackers deploy the XMRig-C3 miner to mine Monero, consuming nearly all computing resources and increasing electricity usage for victims. Each compromised device is assigned a unique mining worker for tracking. The campaign has evolved to include defensive measures and fileless deployment to evade detection. Nearly 90% of cloud environments host PostgreSQL instances, with about one-third publicly accessible, highlighting security vulnerabilities.

Winsage

March 9, 2025

Threat Actors Leverage YouTubers to Attack Windows Systems Via SilentCryptoMiner

Security researchers have identified a malware campaign targeting YouTubers to spread SilentCryptoMiner malware disguised as tools to bypass restrictions. Over 2,000 victims in Russia have been reported, with the actual number likely higher. The malware exploits Windows Packet Divert drivers, with over 2.4 million detections in the past six months. Threat actors issue copyright strikes to compel YouTubers to promote infected files, manipulating their reputations. One YouTuber with 60,000 subscribers linked to a malicious archive that was downloaded over 40,000 times. The infection starts with an archive containing a modified script that executes a malicious executable via PowerShell. If security software removes the file, users are prompted to disable their antivirus. The malware's infection chain is multi-staged, using a Python-crafted loader to retrieve payloads from specific domains. It employs anti-VM techniques, modifies defender exclusions, and stealthily mines cryptocurrencies while pausing during certain program activities. Security experts warn against using restriction bypass tools due to their association with malware distribution.

Winsage

March 6, 2025

Cybercriminals Exploit YouTubers to Spread SilentCryptoMiner on Windows Systems

A malware campaign has emerged, exploiting the popularity of Windows Packet Divert drivers. The SilentCryptoMiner malware, disguised as legitimate tools, has affected over 2,000 victims in Russia. Cybercriminals manipulate YouTubers to share malicious links, with one YouTuber having 60,000 subscribers attracting over 400,000 views on infected videos. Compromised files were hosted on gitrok[.]com, with over 40,000 downloads. Attackers issue copyright strikes to content creators, threatening channel shutdowns to propagate malware. The infection begins with a modified script that executes an executable via PowerShell, using a Python-crafted loader to fetch the payload. SilentCryptoMiner, based on XMRig, mines various cryptocurrencies stealthily, employing techniques to evade detection and dynamically adjust its behavior. This campaign highlights the evolving tactics of cybercriminals, leveraging demand for bypass tools to distribute malware. Users are advised to be cautious when downloading tools from untrusted sources.

Tech Optimizer

March 5, 2025

Cybercriminals are distributing a miner disguised as a restriction-bypassing toolCybercriminals are distributing a miner disguised as a restriction-bypassing tool

In recent months, the use of Windows Packet Divert drivers in Russia has surged, nearly doubling between August 2023 and January 2024, primarily for tools that bypass access restrictions to foreign resources. Cybercriminals are exploiting this trend by distributing malware disguised as these tools, with some bloggers unknowingly promoting such malicious programs. An investigation revealed that a YouTube channel with 60,000 subscribers posted videos on bypassing restrictions, linking to a malicious archive that had been downloaded over 40,000 times. The malware, a variant of SilentCryptoMiner, is designed to mine cryptocurrencies while evading detection. Users are advised to ensure their devices have trusted protection, avoid obscure downloads, and be cautious of even reputable bloggers who may inadvertently share malware.

AppWizard

February 19, 2025

PebbleHost review

PebbleHost, established in 2017, specializes in Minecraft server hosting and offers three plans: budget, premium, and extreme. The budget servers are designed for cost-conscious users. The company also provides VPS and dedicated server hosting, as well as Discord bot hosting services. The server hardware includes Intel i9-9900k and Ryzen 5700X CPUs for budget and premium plans, while the premium plan uses the Ryzen 7900 CPU and DDR5 memory. The extreme plan features dedicated CPU threads. The budget server starts at a low quarterly price for 1GB of RAM, while the premium server with 5GB of RAM is priced monthly. The extreme server starts at a higher price for 6GB of RAM and 3 threads. PebbleHost offers a 72-hour refund policy and various payment methods, including cryptocurrencies. The signup process is straightforward, providing immediate access to passwords and the control panel. The user-friendly control panel allows easy management of server settings, including switching between server versions. PebbleHost has server locations in North America, Europe, and the UK, with premium users also accessing servers in Australia and Singapore. Performance varies by plan, with the budget option potentially insufficient for active users. The premium plan is recommended for better gameplay. Support is available through a ticketing system and an active Discord server, with a positive response time for tickets. An advanced support package is offered for additional assistance. PebbleHost maintains a knowledge base and a server status page showing a 7-day average uptime of 99.992%.