A new Mac OS X trojan horse that monitors web browsing traffic in order to steal Bitcoins has been discovered by SecureMac. The trojan, called OSX/CoinThief.A, is disguised as an innocuous Bitcoin app called StealthBit that purports to send and receive anonymous payments.The app was posted on open-source website GitHub, but the precompiled version of the app had the malicious payload installed. The malware installs browser extensions in Safari and Google Chrome looking for login credentials for a number of Bitcoin related websites including MtGox, BTC-e, and blockchain.info. When the app finds login credentials, it sends those back to the malware's developer.
Initial infection occurs when a user installs and runs an app called "StealthBit," which was recently available for download on GitHub, a website that acts as a repository for open source code. The source code to StealthBit was originally posted on GitHub, along with a precompiled copy of the app for download. The precompiled version of StealthBit did not match a copy generated from the source code, as it contained a malicious payload. Users who downloaded and ran the precompiled version of StealthBit instead ended up with infected systems. A user posting over the weekend on Reddit, the popular discussion site, reported losing 20 Bitcoins (currently worth upwards of $12,000 USD) to the thieves.Bitcoin users who may have downloaded the app should check their browser extensions in Safari and Google Chrome for generic "Pop-Up Blocker" extensions.
34 comments
If you missed Apple's "It's Show Time" event that took place at 10:00 a.m. Pacific Time yesterday morning, or if you just want to rewatch, the event video is now available in its...
Apple's second-generation AirPods, announced last week, started showing up on people's doorsteps this morning and also became available for purchase in Apple retail stores. We picked up a set...
A U.S. International Trade Commission judge today ruled that Apple has infringed on a Qualcomm patent with its iPhones, and has recommended that a limited exclusion order and a cease and desist order...
Apple's new second-generation AirPods are beginning to arrive to customers around the world, and some early adopters have turned to the MacRumors forums and social media to share their first...
Apple's updated second-generation AirPods began arriving to customers around the world this morning, marking the official launch of the new earbuds.
The new AirPods have also made their way...
Apple yesterday shared plans to bring its Apple TV app to multiple smart TVs and third-party set-top boxes, including the Amazon Fire TV and Roku. The TV app will house Apple TV+, Apple's...
Following yesterday's release of iOS 12.2 and macOS 10.14.4, and the launch of the Apple News+ subscription service for magazines and newspapers, some users are reporting that the Apple News app...
Apple today held its first ever services-centric event, where the company introduced several new and upcoming service products with no hardware announcements at all.
It took Apple almost two...
