On August 27, Microsoft Security Intelligence (MSI) warned cryptocurrency owners, who are also Windows users, that their money in cryptocurrency wallets could be at risk due to new malicious software.
A new malware called Anubis seems to be using fork code from Loki. It steals encrypted wallet information, credit card details and other valuable information from these Windows users.
According to MSI, it first discovered malicious software in June on an underground cybercrime website. It bears the same name along with another powerful banking Trojan horse that has been targeting Android smartphones for several months.
MSI stressed that malware appears to be manageable, noting that it was only distributed in “limited initial campaigns that have so far used only a few download URLs and known C2 servers.”
Some websites trick people into downloading Anubis, and then malware steals the information and sends it to the command and control servers via the HTTP POST command.
MSI says it will continue to monitor the threat. Cybersecurity experts have suggested that the way to avoid downloading is not to click on suspicious emails. Because the Loki source code used social technology to target its victims, it sent attachments via email that would install malicious software when clicked.