Investigatons by cybersecurity expert reveals that the user with the “Smokes Night” handle spreads Echelon malware by dropping an infected file into chat rooms without comment.
The expert has attached a report about a similar attack with a list of affected cryptocurrency services. It includes a number of noncustodial wallets (AtomicWallet, Electrum, Exodus) for Bitcoin, Litcecoin, ZCash, Monero and other cryptos.
This version of Echelon has multiple credential-stealing functions, domain detection and computer fingerprinting. It also attempts to take a screenshot of the victim’s device.
The malware can steal the information even if a Telegram user does not open the file. The option of auto-downloading that is built-in to the messenger makes this possible.
As such, the reporter recommends disabling the auto-downloading option in Telegram’s settings.
In 2021, Echelon malware was described as ransomware, a malicious software program that encrypts files for ransom.RelatedUkrainian Police Seize $1.2 Million Worth of Crypto from Members of Ransomware Gang
Discover more from DiutoCoinNews
Subscribe to get the latest posts sent to your email.
