ChainCatcher reported that a malicious extension called "VenomSoftX" was recently discovered in Google Chrome, which can be used to steal users' cryptocurrencies and sensitive data. The extension is installed through the Windows version of ViperSoftX malware and is a JavaScript-based RAT (remote access trojan) and cryptocurrency hijacker.
Security firm Avast analyzed hard-coded wallet addresses in ViperSoftX and VenomSoftX samples and found that as of November 8, the two had earned a total of about $130,000 for their hackers. The stolen cryptocurrency was obtained by transferring attempted cryptocurrency transactions on the attacked devices, excluding profits from parallel activities. (IT Home)