ESET detects web-analytics hack with crypto exchange possible target

Posted 07 November, 2018

ESET reported a hack attack at popular service of web-analytics that could grant access to the crypto exchange platform.

As the company experts stated in the report, the main web-analytics provider Ireland's StatCounter was hacked in early November via integrated malware into pages of the service. 

"Attackers modified the script at www.statcounter[.]com/counter/counter.js by adding a piece of malicious code... This is unusual, as attackers generally add malicious code at the beginning, or at the end, of a legitimate file. Code injected into the middle of an existing script is typically harder to detect via casual observation," said the report.

It was discovered during the research that this script was aimed at incorporating of URI "myaccount/withdraw/BTC", so it is clear that the real target of the hackers was a bitcoin trading platform. This URI was used only by Gate.io, so this platform could probably become a victim of this attack. This platform uses the URI to transfer bitcoins to third-party addresses, while the malware code may replace the target address to hackers' ones.

Besides, the attackers also used the domain very similar to StatCounter. In fact, they have changed two letters making StatConuter, and many users considered this page as the original one. As ESET commented, "this domain had already been suspended in 2010 for abuse."

As for Gate.io, ESET immediately sent a corresponding notification to the exchange. The latter deleted this analytical service and confirmed that all assets are secured.

Previous story

08 November, 2018 12:53

← US dollar improves, market awaits Fed meeting results

In the second half of the week the US dollar posts gains vs the majors driven by the upcoming monetary decision of the US Federal Reserve. The US Dollar index has moved up to 96.03 on Thursday. the sterling maintains positions above 1.3000 handle so far enjoying demand on possible Brexit deal signing. The sterling-to-US dollar exchange rate was at 1.3119 today. The US dollar-to-yen rate hiked to 113.72. The euro slackened vs the greenback reaching $1.1421.

US dollar improves, market awaits Fed meeting results

Next story

07 November, 2018 16:58

Bithumb and Qoo10 announce crypto payments →

humb exchange and Asian marketplace Qoo10 have reported entered into an agreement to launch crypto-based payment instrument. The first contract between the companies was signed back in August to develop Bithumb Cache system and Qoo10 settlement service. Bithumb service called Bithumb Cache was rolled out in spring and represented the password settlement instrument. With this service, the users can convert funds from the exchange to make payments using a password system. 

Bithumb and Qoo10 announce crypto payments
Write a comment
 
Prove you’re not a bot + 9 = 21