A dangerous new malware is spreading through large crypto-focused groups Telegram. This is how you can protect your wallet
Cybersecurity researcher @officer_cia from LobsterDAO and the bug bounty platform Immunefi shared the details of other malware targeting crypto wallets and account credentials.
Echelon is here to steal your crypto
The expert has taken to Twitter to warn all Telegram users about new attacks on crypto wallets registered on Telegram.
Warning ❗️ A thematic attack @telegram crypto chats in progress now. The attackers use an account called “Smokes Night” to spread the Echelon malware by placing a file in the chat room.
TLDR: disable automatic download in Telegram settings right now.
👇 See thread below 👇
– CIA Officer (@officer_cia) December 25, 2021
According to the expert, the user with the identifier “Smokes Night” spreads Echelon malware by placing an infected file in chat rooms without comment.
The expert has attached a report on a similar attack with a list of affected cryptocurrency services. It includes a number of non-custodial wallets (AtomicWallet, Electrum, Exodus) for Bitcoin, Litcecoin, ZCash, Monero, and other cryptocurrencies.
This version of Echelon has multiple functions of credential theft, domain detection and computer fingerprinting. It also tries to take a screenshot of the victim’s device.
This is how you can protect yourself
The malware can steal the information even if a Telegram user doesn’t open the file. The automatic download option that is built into Messenger makes it possible.
As such, the reporter recommends disabling the automatic download option in the Telegram settings.
In 2021, Echelon malware was described as ransomware, a malicious software program that encrypts files for ransom.
As U.Today previously covered, in 2021, ransomware programs stole millions of dollars; Typically, criminals demand a ransom in Bitcoin, Ethereum, or Monero.