Share this article

Latest news

With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low

Copilot in Outlook will generate personalized themes for you to customize the app

Microsoft will raise the price of its 365 Suite to include AI capabilities

Death Stranding Director’s Cut is now Xbox X|S at a huge discount

Outlook will let users create custom account icons so they can tell their accounts apart easier

Warning: SquirtDanger malware takes screenshots and steals your passwords

4 min. read

Updated onJuly 31, 2021

updated onJuly 31, 2021

Share this article

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Palo Alto Networks Unit 42 researchers have discovered a new currency stealer which targets cryptocurrencies and online wallets. Hackers can take action screenshots andsteal passwords, download files and even steal the content of cryptocurrency wallets through a new malware from the ComboJack malware family.

Cryptocurrenciesare increasing in popularity and value, therefore we can expect such malware to pop up in the near future. This calls out users to gain moresecurity for online crypto wallets.

The Swiss Army Knife Malware called SquirtDanger

Researchers have related this attack to the prolific Russian malware author aka ‘TheBottle’. Investigating his online activities, researchersfound tracesthat lead to unraveling the actions of a malware family called The Swiss Army Knife. SquirtDanger is a botnet malware and belongs to this malware family.

The attacks are using a DLL file, SquirtDanger.dll, written in C Sharp and come with multiple layers of embedded code. Once SquirtDanger infected a system, a ‘scheduled task’ is set to perform every minute and obtain as much information as possible. The wealth of its functionality allows the malware to do the following:

SquirtDanger used ‘raw TCP connections’ for initiating network communications to a remote C&C server and researchers were able to extract an embedded identifier from roughly 400 SquirtDanger samples. Digging in, they’ve discovered a code repository which coincided with the capabilities and style of the samples observed.You can read full information based on the in-depth analysis ofPalo Alto Networks Unit 42.

This malware can steal cryptocurrency wallets

SquirtDanger has already infected individuals and organizations around the world, including a Turkish university, an African telecommunications company, and a Singaporean internet service provider. This smartly developed malware has the ability to seek out wallets for various cryptocurrencies, including the following:

Best ways to secure your crypto-trading

Keeping your system updated is probably the first most important step to secure your digital work. After several attacks, most companies have developedanti-malware toolsand updates to protect from orremove malicious attacks.If you consider using crypto-trading, it’s impetuous to install ahigh-quality security software. You can choose one of the best tools available at the moment by reading this article:5 best security software for crypto-trading to secure your wallet.

We also advise to use strong passwords, keep your valuable data safe on a physical device, like a USB drive that is not connected to the internet. Use two-factor authentication and the enhanced security protocols for your email address, like Gmail’s new confidentiality features.

Bitdefenderis using more advanced behavior-based technologies, and this helps the software detect 99% of unknown threats. Bitdefender GravityZone offers high-quality business security, and it’s the ideal tool for your crypto trading.

Ahighly reliable VPNcan hide your IP and replace it with another one from its own network this way preventing third parties to track you online while you are doing your transactions.CyberGhostis one of the leaders in the VPN market and the effective solution that will successfully secure your crypto trading online.

Nevertheless, keep your eyes open and increase your level of awareness for cryptocurrency scams that take advantage of small things to step into your account. Stay informed and updated withcyber-security news.RELATED STORIES TO CHECK OUT:

More about the topics:Cybersecurity,malware

Milan Stanojevic

Windows Toubleshooting Expert

Milan has been enthusiastic about technology ever since his childhood days, and this led him to take interest in all PC-related technologies. He’s a PC enthusiast and he spends most of his time learning about computers and technology.

Before joining WindowsReport, he worked as a front-end web developer. Now, he’s one of the Troubleshooting experts in our worldwide team, specializing in Windows errors & software issues.

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Δ

Milan Stanojevic

Windows Toubleshooting Expert

Before joining WindowsReport, he worked as a front-end web developer. Now, he’s specialized in Windows errors & software issues.