The Chinese printer manufacturer procusted the distributed malware of theft of Bitcoins along with its official drivers, according to the reports of the local media.
The Chinese news media Landian News reported on May 19 that the Shenzhen ProctTored headquarters has been distributing Bitcoin robbery malware (BTC) to the official drivers of surrounding. According to reports, the company used USB controllers to distribute malware controllers and load the software committed to cloud storage for global discharge.
A total of 9.3 BTC worth more than $ 953,000 have stolen their legs, according to the report. The monitoring and compliance with Cryptography Slow Miss described how malware works in a May 19 x publication:
“The official supplier driver of this printer has a rear door program. He will press the wallet address on the user’s clipboard and replace it with the accessor address.”
Related: Mass attack of the supply chain aimed at small number or cryptographic companies: Kaspersky
Youtuber Flags Malware in processed drivers
Landian News recommended users who downloaded printer controllers in the last six months to “immediately make a complete system scan using antivirus software.” Even so, given the blow or nature of the lady of the antivirus software, a complete restoration of the system is always the best option when you have doubts:
“Identally, you must reinstall your operating system and thoroughly verify the old files.”
Supposedly, the problem was first informed by Youtuber, they eat Coward, whose antivirus software detected malware in drivers while trying a procollarized UV printer. The software marked the unit as it contained a Trojan worm and virus called Foxif.
Related: Coinbase faces an invoice of $ 400 million after an internal phishing attack
The cyber security company confirms crypto robbery malware
When it was contacted, procolorado denied the statements and dismissed the antivirus tool marking drivers as a false positive. Coward resorted to Reddit, where he shared the problem with cyber security professionals, attracting the attention of the G-Data cybersecurity firm.
G-Data’s investigation found that most procolorado controllers stayed in the file housing service service, with loads as old as October 2023. The analysis of these files confirmed that they committed themselves to two Distkdoor Win32. A malware and a malware and a malware and a malware and malware and malware and malware and malware and malware and malware: stole designed to replace the addresses in the clipboard with those controlled by the accessor.
G-Data contacted ProcoloRed, and the hardware producer said he eliminated the storage infected controllers on May 8 and scanned all files. Procolo attributed malware to a supply chain commitment, stating that malicious files were introduced through infected USB devices before being loaded online.
Related: Cryptographic drains as a service: what you need to know
