A new crypto-jacking malware by the name of Clipper has been observed recently. Clipper takes advantage of the copy and paste feature on the targeted user’s device. The malware waits for its victim to copy a crypto wallet address and then will replace the paste value with the wallet address of the attacker. Some believe that similar malware has been used on Windows devices since around 2017, but researcher Lukas Stefanko discovered this particular strain early in 2019. Stefanko says the most common infection vector is fake or infected apps on the play store.
An Updated ServHelper Tunnel Variant
Binary Defense December 20, 2019
James Quinn, Threat Researcher for Binary Defense Executive Summary Binary Defense Researchers discovered active Command
