A new Mac OS X trojan horse that monitors web browsing traffic in order to steal Bitcoins has been discovered by SecureMac. The trojan, called OSX/CoinThief.A, is disguised as an innocuous Bitcoin app called StealthBit that purports to send and receive anonymous payments.The app was posted on open-source website GitHub, but the precompiled version of the app had the malicious payload installed. The malware installs browser extensions in Safari and Google Chrome looking for login credentials for a number of Bitcoin related websites including MtGox, BTC-e, and blockchain.info. When the app finds login credentials, it sends those back to the malware's developer.
Initial infection occurs when a user installs and runs an app called "StealthBit," which was recently available for download on GitHub, a website that acts as a repository for open source code. The source code to StealthBit was originally posted on GitHub, along with a precompiled copy of the app for download. The precompiled version of StealthBit did not match a copy generated from the source code, as it contained a malicious payload. Users who downloaded and ran the precompiled version of StealthBit instead ended up with infected systems. A user posting over the weekend on Reddit, the popular discussion site, reported losing 20 Bitcoins (currently worth upwards of $12,000 USD) to the thieves.Bitcoin users who may have downloaded the app should check their browser extensions in Safari and Google Chrome for generic "Pop-Up Blocker" extensions.
34 comments
It's officially iPhone launch day, which means iPhone XS and iPhone XS Max models are in Apple retail stores and have been delivered to customers all around the world. The first pre-orders began...
We're hearing from a number of readers over the past hour or so that Apple's retail stores are having problems completing in-store reservation pickups for the new iPhone and Apple Watch...
Apple today began shipping the iPhone XS, iPhone XS Max, and Apple Watch Series 4 out to customers today, and customers have been eagerly awaiting their shipments today to get their hands on...
As it did for the iPhone X last year, Apple today shared a Guided Tour of the iPhone XS, iPhone XS Max, and iPhone XR on its YouTube channel, walking through some of the biggest features on the trio...
Apple has shared a new Apple Watch Series 4 ad on its YouTube channel, promoting its fitness-related features.
The 30-second video, titled "Better You," shows a person and several of...
Apple has emailed some customers who had an iPhone XS or iPhone XS Max scheduled for in-store pickup at an Apple Store today. The email says their orders "will not be ready for pickup" during...
As customers around the world begin getting their hands on the brand new iPhone XS, XS Max, and Apple Watch Series 4, Apple and CEO Tim Cook today shared images from the September 21 launch.
...
The repair experts at iFixit have shared teardowns of the iPhone XS and iPhone XS Max, providing a look inside the latest models.
iPhone XS on left and iPhone XS Max on right via iFixit
While...
