BorsaDEX+
Kripto AlPiyasalarSpotVadeli İşlemler500XBirikimEtkinlikler
Daha Fazla
ELIZAOS Etkinliği2000g
The post XRP, other crypto assets targeted in EtherHiding attack appeared on BitcoinEthereumNews.com. North Korean threat actors have adopted a blockchain-based technique called EtherHiding to deliver malware designed to steal cryptocurrency including XRP. Summary Hackers embed malicious code in smart contracts to steal XRP and other crypto. EtherHiding evades takedowns by hosting malware on decentralized blockchains. Fake recruiters trick developers into installing malware during job interviews. According to Google’s Threat Intelligence Group, this is the first time GTIG has observed a nation-state actor using this method. The method embeds malicious JavaScript payloads inside blockchain smart contracts to create resilient command-and-control servers. The EtherHiding technique targets developers in cryptocurrency and technology sectors through social engineering campaigns tracked as “Contagious Interview.” The campaign has led to numerous cryptocurrency heists affecting XRP (XRP) holders and users of other digital assets. Blockchain-based attack infrastructure evades detection EtherHiding stores malicious code on decentralized and permissionless blockchains and removes central servers that law enforcement or cybersecurity firms can take down. Attackers controlling smart contracts can update malicious payloads at any time and maintain persistent access to compromised systems. Security researchers can tag contracts as malicious on blockchain scanners like BscScan, but malicious activity continues regardless of these warnings. Google’s report describes EtherHiding as a “shift towards next-generation bulletproof hosting” where blockchain technology features enable malicious purposes. When users interact with compromised sites, the code activates to steal XRP, other cryptocurrencies, and sensitive data. The compromised websites communicate with blockchain networks using read-only functions that avoid creating ledger transactions. This minimizes detection and transaction fees. Sophisticated social engineering The Contagious Interview campaign centers on social engineering tactics that mimicks legitimate recruitment processes through fake recruiters and fabricated companies. Fake recruiters lure candidates onto platforms like Telegram or Discord, then deliver malware through deceptive coding tests or fake software downloads disguised as technical assessments. The campaign employs multi-stage malware infection, including… The post XRP, other crypto assets targeted in EtherHiding attack appeared on BitcoinEthereumNews.com. North Korean threat actors have adopted a blockchain-based technique called EtherHiding to deliver malware designed to steal cryptocurrency including XRP. Summary Hackers embed malicious code in smart contracts to steal XRP and other crypto. EtherHiding evades takedowns by hosting malware on decentralized blockchains. Fake recruiters trick developers into installing malware during job interviews. According to Google’s Threat Intelligence Group, this is the first time GTIG has observed a nation-state actor using this method. The method embeds malicious JavaScript payloads inside blockchain smart contracts to create resilient command-and-control servers. The EtherHiding technique targets developers in cryptocurrency and technology sectors through social engineering campaigns tracked as “Contagious Interview.” The campaign has led to numerous cryptocurrency heists affecting XRP (XRP) holders and users of other digital assets. Blockchain-based attack infrastructure evades detection EtherHiding stores malicious code on decentralized and permissionless blockchains and removes central servers that law enforcement or cybersecurity firms can take down. Attackers controlling smart contracts can update malicious payloads at any time and maintain persistent access to compromised systems. Security researchers can tag contracts as malicious on blockchain scanners like BscScan, but malicious activity continues regardless of these warnings. Google’s report describes EtherHiding as a “shift towards next-generation bulletproof hosting” where blockchain technology features enable malicious purposes. When users interact with compromised sites, the code activates to steal XRP, other cryptocurrencies, and sensitive data. The compromised websites communicate with blockchain networks using read-only functions that avoid creating ledger transactions. This minimizes detection and transaction fees. Sophisticated social engineering The Contagious Interview campaign centers on social engineering tactics that mimicks legitimate recruitment processes through fake recruiters and fabricated companies. Fake recruiters lure candidates onto platforms like Telegram or Discord, then deliver malware through deceptive coding tests or fake software downloads disguised as technical assessments. The campaign employs multi-stage malware infection, including…

XRP, other crypto assets targeted in EtherHiding attack

Yazar: BitcoinEthereumNewsKaynak: BitcoinEthereumNews
2025/10/19 01:01
XRP
XRP$1.9246+2.10%
COM
COM$0.006676-2.99%
Smart Blockchain
SMART$0.00407-3.04%
Overtake
TAKE$0.3312-1.85%
Tagger
TAG$0.0005775-1.34%

North Korean threat actors have adopted a blockchain-based technique called EtherHiding to deliver malware designed to steal cryptocurrency including XRP.

Summary

  • Hackers embed malicious code in smart contracts to steal XRP and other crypto.
  • EtherHiding evades takedowns by hosting malware on decentralized blockchains.
  • Fake recruiters trick developers into installing malware during job interviews.

According to Google’s Threat Intelligence Group, this is the first time GTIG has observed a nation-state actor using this method.

The method embeds malicious JavaScript payloads inside blockchain smart contracts to create resilient command-and-control servers.

The EtherHiding technique targets developers in cryptocurrency and technology sectors through social engineering campaigns tracked as “Contagious Interview.”

The campaign has led to numerous cryptocurrency heists affecting XRP (XRP) holders and users of other digital assets.

Blockchain-based attack infrastructure evades detection

EtherHiding stores malicious code on decentralized and permissionless blockchains and removes central servers that law enforcement or cybersecurity firms can take down.

Attackers controlling smart contracts can update malicious payloads at any time and maintain persistent access to compromised systems.

Security researchers can tag contracts as malicious on blockchain scanners like BscScan, but malicious activity continues regardless of these warnings.

Google’s report describes EtherHiding as a “shift towards next-generation bulletproof hosting” where blockchain technology features enable malicious purposes.

When users interact with compromised sites, the code activates to steal XRP, other cryptocurrencies, and sensitive data.

The compromised websites communicate with blockchain networks using read-only functions that avoid creating ledger transactions. This minimizes detection and transaction fees.

Sophisticated social engineering

The Contagious Interview campaign centers on social engineering tactics that mimicks legitimate recruitment processes through fake recruiters and fabricated companies.

Fake recruiters lure candidates onto platforms like Telegram or Discord, then deliver malware through deceptive coding tests or fake software downloads disguised as technical assessments.

The campaign employs multi-stage malware infection, including JADESNOW, BEAVERTAIL, and INVISIBLEFERRET variants affecting Windows, macOS, and Linux systems.

Victims believe they’re participating in legitimate job interviews while unknowingly downloading malware designed to gain persistent access to corporate networks and steal cryptocurrency holdings.

Source: https://crypto.news/xrp-crypto-assets-targeted-etherhiding-attack/

Piyasa Fırsatı
XRP Logosu
XRP Fiyatı(XRP)
$1.9228
$1.9228$1.9228
-0.95%
USD
XRP (XRP) Canlı Fiyat Grafiği
Sorumluluk Reddi: Bu sitede yeniden yayınlanan makaleler, halka açık platformlardan alınmıştır ve yalnızca bilgilendirme amaçlıdır. MEXC'nin görüşlerini yansıtmayabilir. Tüm hakları telif sahiplerine aittir. Herhangi bir içeriğin üçüncü taraf haklarını ihlal ettiğini düşünüyorsanız, kaldırılması için lütfen [email protected] ile iletişime geçin. MEXC, içeriğin doğruluğu, eksiksizliği veya güncelliği konusunda hiçbir garanti vermez ve sağlanan bilgilere dayalı olarak alınan herhangi bir eylemden sorumlu değildir. İçerik, finansal, yasal veya diğer profesyonel tavsiye niteliğinde değildir ve MEXC tarafından bir tavsiye veya onay olarak değerlendirilmemelidir.

Ayrıca Şunları da Beğenebilirsiniz

Trump’s Scott Bessent promises $100B-$150B in tax refunds next year, ~$1,000-$2,000 per house

Trump’s Scott Bessent promises $100B-$150B in tax refunds next year, ~$1,000-$2,000 per house

The post Trump’s Scott Bessent promises $100B-$150B in tax refunds next year, ~$1,000-$2,000 per house appeared on BitcoinEthereumNews.com. Treasury Secretary Scott
Paylaş
BitcoinEthereumNews2025/12/17 02:03
Solana’s seamless operation post-DDoS signals a new era

Solana’s seamless operation post-DDoS signals a new era

The post Solana’s seamless operation post-DDoS signals a new era appeared on BitcoinEthereumNews.com. Over the past years, the institutional knock against Solana
Paylaş
BitcoinEthereumNews2025/12/17 02:02
Thought Industries Unveils New Learning & Intelligence Vision Expanding Leadership Team with Chief Product and Strategy Officers

Thought Industries Unveils New Learning & Intelligence Vision Expanding Leadership Team with Chief Product and Strategy Officers

Strategic Appointments Follow CEO Arrival as Company Leads Innovation in AI-first Learning & Intelligence Platform BOSTON, Dec. 16, 2025 /PRNewswire/ — Thought
Paylaş
AI Journal2025/12/17 02:15