Trump Coin Scam Delivers Malware That Hijacks Device

Note that this is not a political post; they are only using that coin because it gained popularity and therefore is a good attack method for scammers. It will work just as well on any cryptocurrency if there is enough interest.

It took scammers TWO MINUTES to exploit Trump’s crypto launch to spread malware and steal user data. TWO MINUTES. That is how fast the attack chain can respond.

The user (attacker’s ‘mark’) gets an email that appears to come from crypto exchange Binance. It says the mark can earn up to 2000 Trump coins. The first step is to install the Binance app.

If the mark falls for the scam, they are taken to a fake page that looks like a Binance page to do the download.

The attack is sufficiently amateur that they don’t even mask the address in the address bar – it is binance-web3.com.RU. That is Russia’s country code domain.

If the mark takes the bait and installs the fake app, they supposedly get 50 coins. Register (i.e. give the attackers your personal information) and you get another 100 coins. Make your first deposit and get 150 coins. If you do all three of these you supposedly get 300 coins.

If you make a $100 trade you get 200 coins and so on.

Obviously, you don’t actually get anything other than getting your computer hacked and your information stolen.

By the way, the download contains remote access software so now the hackers can steal any data that is stored on your computer – like banking passwords from your browser (don’t save them there) – as well as trying to infect the rest of your network. If you used your work computer and you connect to the office network, either by VPN or by coming into the office, it won’t be pretty.

As I said, this has nothing to do with Trump the person. He is just a convenient pawn in this game. Next week it could be someone else.

Consider yourself warned.

Credit: Cybernews

by