Posted By: ITWiser Webmaster - Yorkshire's IT Specialists
Posted By: IT Wiser
New Mac Malware Steals Your Bitcoins
A new strain of Mac malware has been reported in the wild that has the ability to monitor web-traffic and steal your Bitcoins.
Dubbed ‘CoinThief’ (full name OSX/CoinThief.A), the malware comes disguised as a downloadable Bitcoin app called ‘StealthBit’ which is able to send and receive anonymous Bitcoin payments.
“Disguised as an app to send and receive payments on Bitcoin Stealth Addresses, OSX/CoinThief.A instead acts as a dropper and installs browser extensions that monitor all web browsing traffic, looking specifically for login credentials for many popular Bitcoin websites, including MtGox and BTC-e, as well as Bitcoin wallet sites like blockchain.info,” said SecureMac in an advisory.
“When login credentials are identified, such as when a user logs in to check their Bitcoin wallet balance, another component of the malware then sends the information back to a remote server run by the malware authors.”
CoinThief is able to invisibly install itself as a browser extension on both Google Chrome and Safari and spy on your activity. In addition to this, it also installs a programme that is able to work in the background and identify Bitcoin credentials that can be sent to a remote server and be operated with remote commands, meaning cybercriminals can add to its functionality by installing updates.
According to SecureMac, information sent back to the controlling server is not limited to Bitcoin login credentials, but also includes the username and UUID for the infected Mac, along with a variety of Bitcoin-related apps installed on the system.
A report from the International Business Times revealed that one Reddit user has reported a theft of 20 Bitcoins due to CoinThief. At current prices, this equates to approximately £8,000.
Mac No Longer a Secure Platform
Mac, the chosen OS for designers and media-types, has long been regarded as a safe platform and a virus-free alternative to Windows; however, this is no longer the case. Malware attacks have increased rapidly over the past few years – the Yontoo and Flashback Trojan’s in particular affecting thousands of users by exploiting vulnerabilities such as Java.
If your business relies on Macs in its operations, it is no longer safe to run a system without antivirus protection and arrangements must be made to install Cloud Web Security. Mac has become a viable and lucrative operating system for cybercriminals and you cannot leave anything to chance.
Contact ITWiser today to discuss how Cloud Web Security can safeguard your Mac.