Bitcoin Ransomware created fake Symantec Blog

Bitcoin ransomware called "CoinThief" created fake Symantec Blog website with fake "security" article
20 November 2017   1680

The news from the hacking and ransomware world has already become as fascinating as a first-class detective novel. And today we have some more interesting news.

The fake website of well known IT security firm Symanctec had appeared. Someone had created the almost exact copy of "Blog" section of original website. It looks almost 100% as original, besides two things: "Search" feature doesn't work and there is a fake article regarding CoinThief.

Original Symantec Blog
Original Symantec Blog

Take a good look at the screenshot above, and take even a better look on the left pic with girl in glasses. 

Fake Symantec Blog
Fake Symantec Blog

Now compare the left pic of the fake website with the original one. The text under says that "New Version of CoinThief Infects Mac Crypto Traders". 

Fake article says that the malicious program is distributed using the zero-day vulnerability in browsers [0day is a term denoting unresolved vulnerabilities, as well as malicious programs against which protection mechanisms have not yet been developed].

Also, the fake site reported that the modified version of CoinThief infects Mac users using the 0-day JavaScript vulnerabilities in the two main browsers (Gecko - Mozilla, Webkit - Chrome, Safari, Opera) without any user interaction.

It gives some fake recommendations, that can be very dangerous and gives a link to a suspected malware download. We strongly recommend you not to follow fake instruction. The original Symantec Blog is https://www.symantec.com/blogs/ It is also worth noting that fake website marked as "Secured" in the browser.

Miners Arrested in 2 Chinese Cities For Power Theft

Six people were detained in Tianjin and two in Wuhan
25 April 2018   91

Bitcoin miners were arrested in two Chinese cities on charges of stealing electricity. This is reported by CoinDesk.

In the first case, 6 people were detained in Tianjin. The suspects used 600 devices for mining bitcoins that were connected to a local substation. The police claim that the connection was made bypassing the counters.

The investigation was initiated after one of the electric power companies discovered a discrepancy between the actual and claimed consumption of electricity.

The police seized all equipment for mining, as well as 8 powerful fans.

Events are taking place while China continues to play a dominant role in the mining of bitcoin, despite the pressure on the cryptocurrencies. As Xinhua notes, this case of electricity theft turned out to be the largest in recent years.

According to another report, which appeared today on the website of the Supreme Prosecutor of China, two more suspects were detained in Wuhan. They also stole electricity.

The detainees used empty stores since March 2017 to house miners and did not pay for electricity, as did the defendants from Tianjin.