That’s how easy it is to get hacked and have Bitcoin stolen
- An attacker targeted Paradigm’s security chief and tried to steal his Bitcoin with three clicks.
- Sam Sun shared details about the compelling hook and how easy it is for individuals to fall victim to the Bitcoin hack.
- Attackers can steal wallet data directly from browser extensions or Discord session tokens when users click on malicious links.
Former white hat hacker and security chief of Paradigm, a VC company, was recently hacked. Sam Sun told his 86,300 Twitter followers how three clicks and two malicious file downloads could give the hacker access to Bitcoin.
Hackers target wallet data to users, sending malicious links
Sam Sun, a former white hat hacker and security chief at Paradigm, was recently hit by an attacker in an attempt to steal his wallet data and eventually his Bitcoins. Sun performed malware analysis and broke down the series of events that could have led to a successful attack on his wallet data.
1 / Today someone tried to hack me with a crypto thief, so I guess I finally managed it
Fortunately, they did not succeed, but it only took three clicks. Read on to learn about how the attack works, how to protect yourself and some basic malware analysis pic.twitter.com/31qqUoATWL
– samczsun (@samczsun) July 5, 2022
Sun shared the analysis on his Twitter account, revealing how easy it is to be hacked and how attackers steal information such as wallet data and Discord session tokens to gain access to users’ cryptocurrencies. In Sun’s case, a malicious actor sent a message with a link to arouse his curiosity.
The message read,
Hello
I’m sorry to disappoint you.
You’ll be sued.
You can read a copy of the lawsuit here (malicious link)
No copyright is claimed.
You can also write a statement in response, good evening John.
Sun revealed that messages accompanied by malicious links are compelling hooks, and when put under pressure, even trained security experts can act irrationally and click on the link.
By clicking on the link, you download a file to the target computer. This is the first step, opening the downloaded file takes the target one step closer to being hacked. Once the file is opened, the attacker has access to wallet data, browser extensions or Discord session tokens for the target. This gives the malicious player direct access to your cryptocurrency.
“Hybrid Analysis”, an automated malware analysis service provider, helped Sun identify the two downloaded files on his device as malicious. Running the files through a malware analysis detector helped him determine that the attacker was trying to steal his cryptocurrency. Therefore, Sun warns its followers against running downloaded programs, files without running them through the malware analysis detector.
Results after running both downloads through hybrid analysis
Attacks are therefore not limited to the DeFi ecosystem, and holders of cryptocurrencies are just three clicks away from losing access to their holdings.
Why KuCoin’s insolvency could have serious implications for the Bitcoin price
Analysts at FXStreet evaluated the impact of Mt.Gox’s insolvency on Bitcoin and revealed that they expect a similar situation in the case of KuCoin. For more information and the impact on the Bitcoin price, check out this video:
