Clipper Cryptocurrency Stealing Malware - Binary Defense

Threat Watch

Share on facebook
Share on twitter
Share on linkedin

Clipper Cryptocurrency Stealing Malware

A new crypto-jacking malware by the name of Clipper has been observed recently. Clipper takes advantage of the copy and paste feature on the targeted user’s device. The malware waits for its victim to copy a crypto wallet address and then will replace the paste value with the wallet address of the attacker. Some believe that similar malware has been used on Windows devices since around 2017, but researcher Lukas Stefanko discovered this particular strain early in 2019. Stefanko says the most common infection vector is fake or infected apps on the play store.

ANALYST NOTES

When dealing with cryptocurrency, it is always important to double-check the wallet address if it is being copied and pasted. Lukas Stefanko also suggests avoiding using the Windows AI, Cortana, as it has keylogging abilities and could be taken advantage of by attackers. For more information, please see: https://finance.yahoo.com/news/clipper-malware-used-steal-cryptocurrency-090055661.html

Contact Support

Please complete the form below and a member of our support team will respond as quickly as possible.