Hackers steal bitcoin infecting thousands of websites
The cryptocurrency exchange house Gate.io was the main objective of a group of hackers who compromised a recognized page of data analysis
As reported by the Internet security company ESET, some hackers compromised StatCounter, one of the most important web analysis platforms in the world, in an attempt to steal bitcoin from the clients of the exchange house.
The attackers managed to inject a malicious code into the StatCounter script, registering a domain quite similar to the official one. The fake domain changed two letters of the original when creating StatConuter, something that would be difficult to detect when looking for unusual activities. The domain was suspended in 2010 when it was associated with abusive behavior.
StatCounter is used by more than 2 million websites and provides statistics of billion clicks per day. The false account managed to infect around 700 thousand sites, even though Gate.io was its only goal.
Among the different cryptocurrency exchange houses that currently operate, only Gate.io has a valid page with this URI, myaccount / withdraw / BTC, so the exchange seems to be the main focus of the attack.
The URI is used by Gate.io to transfer bitcoin from its own account to an external bitcoin address, according to the report. So this script automatically replaces the bitcoin address of the users with one belonging to the attackers.
For its part, the malicious server generates new bitcoin addresses every time a visitor loads the StatConuter script making difficult to determine how many bitcoins were transferred to the criminals.
L.Sáenz
Source: Coincrispy
Receive this and all our information directly on your cell phone through our channel on Telegram:https://t.me/
