Phorpiex a new malicious botnet has been discovered
The crypto clipper changes the recipient addresses when sending cryptocurrency
17.12.2021 - 12:20
276
1 min
0
What’s new? Check Point Research (CPR), a cyberthreat research company, reports a new variant of Phorpiex, a botnet known for spamming, extortion, and cryptocurrency theft. The new variant, dubbed Twizt, has stolen more than $500 000 worth of cryptocurrency in a year.
How does Twizt work? According to CPR, the botnet uses a technique called “cryptocurrency clipping.” The malware replaces the recipient's wallet address with that of the attacker. Twizt operates without active management and control servers, meaning that each infected computer can expand the botnet. Since the botnet uses a peer-to-peer model, it can receive the commands and updates from other devices hosting the virus.
How much did the attackers manage to steal? Between November 2020 and November 2021, Phorpiex bots hijacked 969 transactions. The hackers stole 3,64 BTC, 55,87 ETH, and $55 000 in ERC20 tokens. The largest intercepted transaction was 26 ETH.
Useful material?
Market
To advance crypto-friendly regulation, Trump’s party needs to win a majority in the Senate
Oct 18, 2024
Incidents
The regulator believes that the court erred in not recognizing retail sales of XRP as securities transactions
Oct 18, 2024
Market
The leader was the Solana network, with 100 million active addresses per month
Oct 17, 2024
Crypto regulations
Amendments to the regulation of financial institutions have been published for public discussion until October 30
Oct 16, 2024
Market
Over the past four years, the company’s shares have grown by 1540%, while the index has gained only 111%
Oct 16, 2024
Incidents
Over the last 24 hours, the asset has updated its all-time high at $2,34
Oct 15, 2024