MultiversX Tracker is Live!

Try to not update things while you are unknown wifi (like a hotel wifi)

All Cryptocurrencies

by COINS NEWS 03/20 56 Views

So there recently was a story about a very targeted attack on exact people. In this case, an senior executive of a large electronics manufacture went to Japan on a business trip and he stayed at a hotel. He connected to the WiFi and enter in his room number to gain access.

After a bit, his browser said it had an update. Which he installed. This update was malware.

What happened was hackers did a phishing campaign against the hotel to get into the hotel servers. So they knew exactly who was staying in what room, and then they got into the WiFi gear which allowed them to send a fixed software update that contained a stolen digital signature to the target computer. The malware would wait months before connecting with the hackers and downloading more modules.

The hacker group has successfully breached a number of gov groups including Russia, USA, and China. They went after many higher end companies.

While these are highly highly targeted attacks. The biggest thing to note is it's best to

  1. make sure the network you are joining is real. Evil twin attacks are used to trick users into giving up wifi passwords, also fake networks can act as a man in the middle. Where you connect to the hackers wifi, their wifi connects to the real one. The hacker just copies all the traffic going to and from. Sometimes even injecting stuff if they want.
  2. Avoid doing updates while connected to unknown WiFi. IF YOU MUST, a trick is to use a VPN. You will want the device to connect as soon as it hits the net. What this does is the device if setup right it makes it nearly impossible for the hackers to send a update payload if the device is ONLY looking and accepting through the VPN and ignoring LAN. Personally I like PIA and there is ways to get it to do this. I personally like PIA because they don't keep logs and this has been tested many times in courts. They even were kicked out of Russia due to this.

Why is this important for crypto?

Simple. While at first you might think you will never be targeted. Little mistakes can cause you to be. Maybe it's simple as a co-worker that knows you have crypto and has a big mouth, maybe someone was shoulder surfing and seen you check your portfolio, etc. It really doesn't matter

If the hacker knows you use a given program they can screw with. Maybe it's something you use for fun, maybe it's some 3D modeling thing, or whatever. If there is a known security flaw with it. This can be used to do some nasty things.

submitted by /u/crua9
[link] [comments]
Get BONUS $200 for FREE!

You can get bonuses upto $100 FREE BONUS when you:
πŸ’° Install these recommended apps:
πŸ’² SocialGood - 100% Crypto Back on Everyday Shopping
πŸ’² xPortal - The DeFi For The Next Billion
πŸ’² CryptoTab Browser - Lightweight, fast, and ready to mine!
πŸ’° Register on these recommended exchanges:
🟑 Binance🟑 Bitfinex🟑 Bitmart🟑 Bittrex🟑 Bitget
🟑 CoinEx🟑 Crypto.com🟑 Gate.io🟑 Huobi🟑 Kucoin.



Read more

Related Posts

Comments