logo

COLDRIVER using new malware to steal from Western targets — Google

By: the crypto news wire|2025/05/08 04:15:02
0
Share
copy
The malware, LOSTKEYS, can steal files from hard-coded extensions and directories, according to Google. Threat group COLDRIVER is using new malware to steal documents from Western targets, according to a May 7 report from Google Threat Intelligence. The malware, called LOSTKEYS, shows the evolution of the group from credential phishing to more sophisticated attacks. According to the Google report, the new malware is installed through four steps. The process involves a “lure website” with a fake CAPTCHA, a PowerShell script downloaded to the user’s clipboard, some device evasion, and retrieval of the final payload. Lastly, the malware is installed. LOSTKEYS is capable of stealing files from extensions and directories. It can also send system information and running processes back to COLDRIVER. The address from which the parts of the attack come is “165.227.148[.]68” according to Google. Read more

You may also like

The price difference exceeds 50%, and the pre-market arbitrage market for cryptocurrency stocks will become a new business in the crypto bear market

In a bear market, what to Buidl? Besides having a counter-cyclical mindset, one must also find the "cracks" in existing services.

How to Trade Crude Oil: Market Volatility Creates New Opportunities for Crypto Traders

Oil prices are back in focus as geopolitical tensions and supply shifts reshape global markets. Learn how crude oil trading works and explore a $30,000 trading campaign on WEEX.

OpenClaw and AI Bots: From AI Trading to BTC Liquidations in the Crypto Gold Rush

AI crypto trading bots like OpenClaw and AI trading apps are reshaping digital markets. From BTC liquidations to crypto bubble charts, automated trading is expanding alongside free crypto airdrops, affiliate programs, LALIGA partnerships, and tokenized gold markets.

Michael Saylor's advice to young people: read more history and science fiction, and use AI to accelerate personal growth

In an interview, MicroStrategy founder Michael Saylor characterized Bitcoin as digital capital and gold, proposing a three-tier investment framework. He stated that its volatility continues to decrease and long-term returns outperform traditional assets, while also advising young people to read hist...

Morning Report | USDC issuance increased by approximately 1.7 billion in one week; Aave will launch the Aave Shield feature; total circulation of Ethereum is approximately 121.53 million

Overview of Important Market Events on March 15

Circle CEO's latest interview: Stablecoins are not crypto assets

The true meaning of stablecoins is to transform the US dollar into a native currency of the internet, ultimately forming an internet financial platform.

Popular coins

Latest Crypto News

11:42

The top 100 addresses on Hyperliquid contributed over 80% of the trading volume

Hyperliquid ecosystem data analysis service Hyperliquid Hub stated on X that the total number of user trading addresses for Hyperliquid has reached 1,725,066, with the top 100 addresses alone contributing 81.3% of the total trading volume, while the remaining 1,724,966 addresses contributed only 18....
11:42

Insiders: ByteDance suspends global release plan for Seedance 2.0 due to copyright disputes

According to IT Home citing The Information, two informed sources stated that TikTok's Chinese parent company ByteDance has suspended its global launch plan for the latest video generation model Seedance 2.0 after a series of copyright disputes with several major Hollywood studios and streaming plat...
11:42

Data: 181.56 BTC transferred from Coinbase, worth approximately 13.2 million USD

According to Arkham data, at 09:55, 181.56 BTC (worth approximately 13.2 million USD) was transferred from Coinbase to multiple anonymous addresses.
11:42

Data: The current whale position on the Hyperliquid platform is 3.571 billion USD, with a long-short position ratio of 1

According to Coinglass data, the current whale holdings on the Hyperliquid platform amount to $3.571 billion, with long positions at $1.788 billion, accounting for 50.06% of the holdings, and short positions at $1.783 billion, accounting for 49.94%. The profit and loss for long positions is $13.9862...
11:42

A suspected hacker address manipulated THE price, triggering a cascade of liquidations in the Venus Protocol, resulting in profits exceeding 5.07 million dollars

A wallet address that received 7,447 ETH (approximately $16.29 million) from Tornado Cash, "0x7a7," is suspected to be behind the CAKE/THE liquidation cascade event on Venus Protocol.The attacker borrowed $9.92 million in stablecoins using ETH as collateral on Aave, then hoarded a large amount of TH...
Read more
Community
iconiconiconiconiconiconicon

Customer Support Bot@WEEX_support_smart_Bot

VIP Servicessupport@weex.com