Cybercriminals Use Binance Smart Chain Contracts to Spread Malware via Compromised WordPress Sites

Cybercriminals have developed a new method of spreading malware by manipulating Binance Smart Chain (BSC) smart contracts to hide and distribute malicious code. The technique, known as 'EtherHiding', involves injecting code into compromised WordPress websites that retrieves partial payloads from blockchain contracts. The attackers hide the payloads in Binance smart contracts, which act as anonymous free hosting platforms for them.

The hackers can update the code and change attack methods at will, making it difficult to mitigate. Website owners using WordPress need to be extra vigilant with their security practices, as WordPress sites are frequently compromised and serve as primary gateways for these threats to reach a large number of victims.

BNB Chain

Original Link

Comments

All Comments

Recommended for you

Cosine: After a user used GPT to write a bot with a backdoor code, the private key was sent to a phishing website

SlowMist Yu Xian stated in a post on the X platform that a user used GPT to write a bot with code and sent the private key to a phishing website. The reason why the private key was stolen was because it was directly sent to the phishing website in the HTTP request body. Yu Xian reminded that when using LLM such as GPT/Claude, one must pay attention to the common fraudulent behavior of these LLM. It was previously mentioned that AI poisoning attacks were carried out, and now this is a real attack case targeting the crypto industry.
Polymarket Blocks French Users Amid Government Investigation into Gambling Law Compliance

Polymarket has blocked users from France following reports of an investigation by the country's gaming authority for compliance with gambling laws. The ban was not stated in Polymarket's terms of service, but French users attempting to access the website using a VPN from a French server were met with a digital blockade. The ANJ, France's national gaming authority, began investigating Polymarket after a French trader placed large bets on Donald Trump winning the 2024 US Presidential election.
Yao Qian, former director of the Science and Technology Supervision Department of the China Securities Regulatory Commission, was expelled from the party and removed from public office for allegedly u

the Discipline Inspection and Supervision Team of the Central Commission for Discipline Inspection and the National Supervision Commission stationed in the China Securities Regulatory Commission and the Supervision Commission of Shantou City, Guangdong Province, recently conducted disciplinary review and supervision investigations into Yao Qian, former director of the Science and Technology Supervision Department of the China Securities Regulatory Commission and former director of the Information Center, for serious violations of discipline and law.
SlowMist: Will help law enforcement agencies track down the stolen funds from DEXX. Currently, about 2,000 suspicious addresses have been roughly identified.

SlowMist announced on X platform that its team will assist law enforcement agencies in tracking stolen funds and analyzing related clues. A complete list of hacker addresses will soon be released with DEXX. Currently, about 2,000 suspicious addresses have been roughly identified.
DEXX: If all assets are recovered, full compensation will be given immediately

DEXX, the on-chain trading terminal, has released an update regarding the previous security incident. DEXX has officially filed a lawsuit and the SlowMist team is actively assisting law enforcement in the follow-up investigation. At the same time, DEXX is actively discussing compensation plans. Regarding compensation:
SlowMist: DEXX incident has identified more than 900 victims, with total losses estimated at $21 million

blockchain security company SlowMist announced that as of November 18th, the DEXX incident report has been updated: more than 1,100 reports of funds being stolen have been received from the community. After removing duplicate reports, it has been confirmed that there are more than 900 victims, with a total estimated loss of $21 million (affected by price fluctuations). Loss details (so far):
Warning: Multiple Dexx user emails have been subjected to abnormal login attempts. It is recommended to change the passwords of the associated accounts in time.

On November 18th, OneKey Security Lab issued a security warning. Multiple users of the Dexx trading platform reported abnormal login attempts on their associated email accounts. OneKey recommends that users take immediate security measures, especially for those who use the same password for logging in to Dexx and their email: 1) immediately change the password for all Web2 accounts that use the same password; 2) completely abandon any leaked password combinations; 3) pay special attention to the security of email accounts that contain sensitive information and are associated with multiple authentications.
BNB Chain has completed the second Sunset fork

According to official information from BNB Chain, it has completed its second Sunset fork. The second Sunset fork will migrate the BNB beacon chain staking function to the BNB smart chain, and all assets need to be migrated from the beacon chain to the BNB smart chain. BNB Chain reminds users:1. Staked BNB: If BNB is staked, it needs to be migrated. If it is not migrated before July 14th, the staking will be automatically cancelled and returned to the user's account within 2 weeks.2. BNB and other BEP2 assets: These assets also need to be migrated from the beacon chain to the BNB smart chain. If the assets are not migrated, they will not be transferable after August 15th. If the asset migration is not completed yet, it needs to be done before July 14th.
Cointime April 20th News Express

1. Ordinals’ cumulative fee income exceeds 6,700 BTC, an increase of approximately $80 million in the past three days
BNB Chain’s high-risk DappBay alert list adds 7 new projects including AlphaOrBeta

BNB Chain updated its Dapp Bay high-risk DApp Red Alarm project list. The projects that were added to the list in the past 24 hours include AlphaOrBeta, Rocket Wallet, BIM Finance, Goose Finance, Uno Re, Anchor Finance, and Sashimi Swap.

Daily Must-Read

Popular Activities

Delysium $AGI & AI Private Yacht Party

March 27 - March 27

Seoul

Recently Searched

Hot Coins

Trending

Daily Must-Read

Welcome Back

Join CoinTime

Sign in with email

Sign up with email

Check your inbox

Cybercriminals Use Binance Smart Chain Contracts to Spread Malware via Compromised WordPress Sites

All Comments

Recommended for you

Cosine: After a user used GPT to write a bot with a backdoor code, the private key was sent to a phishing website

Polymarket Blocks French Users Amid Government Investigation into Gambling Law Compliance

Yao Qian, former director of the Science and Technology Supervision Department of the China Securities Regulatory Commission, was expelled from the party and removed from public office for allegedly u

SlowMist: Will help law enforcement agencies track down the stolen funds from DEXX. Currently, about 2,000 suspicious addresses have been roughly identified.

DEXX: If all assets are recovered, full compensation will be given immediately

SlowMist: DEXX incident has identified more than 900 victims, with total losses estimated at $21 million

Warning: Multiple Dexx user emails have been subjected to abnormal login attempts. It is recommended to change the passwords of the associated accounts in time.

BNB Chain has completed the second Sunset fork

Cointime April 20th News Express

BNB Chain’s high-risk DappBay alert list adds 7 new projects including AlphaOrBeta

Daily Must-Read

Uniswap Labs, UNI holders could make $468M a year from new L2: DeFi Report

Avalanche Foundation to buy back nearly 2M AVAX sold to Terra in 2022

Gold Fever Hits Costco: 77% of Stores Sell Out Amid Soaring Demand for Bullion

$500M Bitcoin Buried in Landfill: Man Sues City After Decade-Long Battle for Recovery

Former BAYC creative director Jeff Nicholas joins Meta’s Reality Labs

Why is Solana's Dogwifhat (WIF) memecoin crashing?

Popular Activities

Delysium $AGI & AI Private Yacht Party

Popular Tags

Share