News

Hackers create novel way to hide malicious code in blockchains

October 16, 2023October 16, 2023 Nxtgen Virtue bitdenex, blockchain, crypto, cryptocurrencies, cryptocurrency, cryptonews

According to cybersecurity researchers, threat actors have devised a method to conceal malware payloads in Binance smart contracts in order to trick victims into updating their browsers in response to bogus notifications. Cybercriminals have identified a new method of spreading malware to unwary users, this time by using BNB Smart Chain (BSC) smart contracts to conceal malware and distribute harmful code.

Security experts at Guardio Labs released a summary of the “EtherHiding” technique in an Oct. 15 article, stating that the attack involves infecting WordPress websites by injecting code that gets partial payloads from blockchain contracts. The attackers conceal the payloads in BSC smart contracts, which operate as anonymous free hosting sites.

Hackers have complete control over the programming and attack methods. The most recent assaults have taken the form of bogus browser upgrades, in which users are urged to update their browsers via a bogus landing page and link. The payload includes JavaScript, which downloads more code from the attacker’s sites. This eventually results in complete site defacement with bogus browser update alerts that spread malware. Using this method, threat actors can change the attack chain by simply changing out malicious code with each subsequent blockchain transaction. According to Nati Tal, head of cybersecurity at Guardio Labs, and fellow security researcher Oleg Zaytsev, this makes mitigation difficult.

Once infected smart contracts are deployed, they work on their own. Binance can only rely on its developer community to detect harmful code in contracts.”WordPress sites are so vulnerable and frequently compromised, as they serve as primary gateways for these threats to reach a vast pool of victims,” Guardio said, adding, “WordPress sites are so vulnerable and frequently compromised, as they serve as primary gateways for these threats to reach a vast pool of victims.” According to the business, Web3 and blockchain open up new avenues for hostile activities to run undetected. “Adaptive defences are needed to counter these emerging threats,” according to the report.

Buy and sell crypto in minutes with 0.20% trading fees at Bitdenex Exchange.