Disclaimer: Information found on CryptoreNews is those of writers quoted. It does not represent the opinions of CryptoreNews on whether to sell, buy or hold any investments. You are advised to conduct your own research before making any investment decisions. Use provided information at your own risk.
CryptoreNews covers fintech, blockchain and Bitcoin bringing you the latest crypto news and analyses on the future of money.
Cybersecurity experts from Check Point Research have identified a new threat aimed at cryptocurrency users, referred to as the Styx Stealer malware.
This malicious program is designed to extract a variety of sensitive data, including cryptocurrency, by utilizing a method known as clipping.
This technique enables the malware to intercept and modify the recipient’s wallet address during transactions, redirecting funds to the attacker’s account.
Styx Stealer Available for Rent
Styx Stealer is available for rent via its developer’s website, with pricing set at $75 per month or $350 for a lifetime license.
First introduced in April, the malware has already been linked to multiple attacks.
It is notably based on an earlier malware variant called Phemedrone Stealer, but includes improved features such as new evasion techniques and the addition of a crypto clipper function.
The malware was discovered unexpectedly when the developer encountered a data leak during debugging.
This incident enabled researchers to trace the origins of Styx Stealer and reveal important details about its functionality.
It was disclosed that the developer, located in Turkey, had accumulated around $9,500 in cryptocurrency payments within the initial two months following the malware’s launch.
These payments were linked to eight cryptocurrency wallets associated with the developer.
Styx Stealer mainly takes advantage of a vulnerability in Microsoft Windows Defender, which was addressed last year.
Consequently, Windows users with updated systems are not at risk.
Related Posts
However, those who have not updated their systems remain susceptible to this malware.
The website promoting Styx Stealer, styxcrypter.com, originally included comprehensive pricing and product details but was modified on August 16 to feature a different product.
Transactions were conducted through Telegram using various cryptocurrencies, including Bitcoin and Tether.
Check Point Research has also pinpointed the developer’s Telegram accounts, email addresses, and phone numbers, offering vital leads for further investigation.
Overall Illicit Crypto Transactions Decline in 2024
A recent report from Chainalysis indicated a reduction in overall illicit cryptocurrency transactions in 2024, despite a rise in certain types of criminal activities within the sector.
Published on August 15 as part of the mid-year crypto crime update, the report highlighted that hacking and ransomware incidents were becoming more common.
Two specific categories, in particular – stolen funds via hacking and ransomware attacks – have experienced an increase.
Of particular concern is the resurgence of hacking in 2024. Chainalysis observed a significant rise in the value of stolen assets.
By the end of July, the total value of stolen cryptocurrencies had reached $1.58 billion – an 84% increase compared to the same timeframe in 2023.
While the number of hacking incidents saw only a slight rise (2.8% year-over-year), the average value stolen per hack increased dramatically.
In July alone, hackers stole around $266 million through 16 distinct breaches, resulting in considerable losses for the crypto sector.
The July 18 attack on Indian crypto exchange WazirX is particularly notable. This incident alone accounted for over $230 million, or 86.4%, of the month’s total losses.
The post Windows Users Beware: Styx Stealer Malware Can Clip Your Crypto Transactions appeared first on Cryptonews.
