The Chinese print manufacturer distributed harmful programs for bitcoin stealing in addition to official drivers, according to local media reports.
Chinese news port for Indian News I mentioned On May 19, the Churchine -based printer company distributed harmful programs for bitcoin theft (BTC) along with official drivers. According to what was reported, the company used USB drivers to distribute drivers full of harmful programs and download the risk programs for cloud storage for global download.
A total of 9.3 BTC was stolen with a value of more than $ 953,000, according to the report. Slow MIST has described the encryption and compliance tracking of how harmful programs work on May 19 x mail:
“The official driver submitted by this printer holds a back program. The wallet address will be hijacked in the user’s portfolio and replacing it with the title of the attacker.”
Related to: The huge supply chain attack targeting a small number of encryption companies: Kaspersky
YouTube malicious flags in drivers
Landian News has recommended users who have downloaded the Proquoled printer drivers in the past six months to “perform a full system of the system using the antivirus program.” However, given Nature or Miss Nature for anti -virus programs, the restoration of the full system is always the best option when doubting:
“Ideally, you should reinstall your operating system and completely check the old files.”
It was claimed that the case was reported for the first time by YouTuber Cameron CadeterThe anti -virus program discovered harmful programs in drivers during the tested of the accompanied UV printer. The program informed the drive as it contains a Troji -virus called Foxif.
Related to: Coinbase faces a $ 400 million bill after the internal hunting attack
Cyber Security Company confirms the harmful programs for the theft of encryption
Upon connection, Procolorder rejected claims and rejected the anti -virus tool that indicates drivers as wrong. Cheese turned into I respondedWhere he participated in the case with cybersecurity professionals, and attracted the attention of the Cyber Security Company G-Data.
G-Data’s investigation I found that most of the Procolord drivers were hosted on the Mega file hosting service, with old downloads in October 2023. The analysis of these files confirmed that they were at risk through two distinct pieces of malware: Backdooor Win32.backdooor.xredrat.a and an encrypted theft designed to replace the address in the tape with those governed by the attacker.
The G-Data was contacted, where the device’s producer said that he deleted the injured drivers from storing them on May 8 and all files were re-expanded. Procolored attributed malware to a compromise of the supply chain, saying that the harmful files have been presented through the affected USB devices before downloading them online.
Related to: Curd drains as a service: What you need to know
The post Chinese printer maker spread Bitcoin stealing malware — Report first appeared on Investorempires.com.
