Bitcoin Hit By Gameover Malware, Chinese Crackdown

China gets tough with exchanges trading Bitcoins, while new malware variant targets Bitcoin customers.

Top 10 Cloud Fiascos (click image for larger view)
Bitcoin aficionados were hit with a double whammy Wednesday, after Chinas largest Bitcoin exchange, BTC China Exchange, stopped accepting Chinese Yuan. The same day, security experts warned that a new variant of the Gameover malware, which is based on the Zeus banking Trojan, has begun targeting Bitcoin exchanges.
News of the blocking of Chinese Yuan (a.k.a. renminbi) deposits at Shanghai-based BTC China triggered a Bitcoin selloff, which caused the currency to lose about half of its value, dropping from a high of $1,250 Wednesday to a Bitcoin being offered for sale for just $636. At the Mt Gox exchange, meanwhile, the value of a Bitcoin Wednesday was averaging about $570.
The Chinese central banks Bitcoin crackdown -- seen by some commentators as the governments attempt to bring the volatile virtual currency under control -- reportedly sparked a retaliatory series of distributed denial-of-service attacks that disrupted the website of the Peoples Bank of China.
[ Is mobile security improving? Read
Android AV Improves But Still Cant Nuke Malware
.]
The crackdown started last month, when the Peoples Bank of China
prohibited the countrys financial institutions
from handling Bitcoins. On Monday, the central bank expanded that prohibition, telling all third-party payment providers that they must cease providing clearing services to all cryptographic virtual currencies -- including Bitcoin and Litecoin -- by the end of January.
We essentially got notice from our third-party payment provider that they will discontinue accepting payments for us and new deposits, BTC China CEO Bobby Lee
told the South China Morning Post
. Were still operating a bitcoin exchange in China, legally, and were still allowing people to deposit and withdraw bitcoin and withdraw renminbi.
BTC China has been the worlds largest Bitcoin exchange, handling 40% of the worlds Bitcoin trading. But much of that trading has come from mainland China.
A lot of people put Bitcoins rise over recent months to China where interest in it has gone through the roof, Emily Spaven, editor of digital currency news site CoinDesk,
told the BBC
. People are getting frightened that with the new regulations the country could now drop out of the ecosystem. Going forward, its certainly not the end of Bitcoin, but people have been panic selling.
Beyond the wildly fluctuating value of Bitcoins, Bitcoin aficionados should also beware a new version of the
Gameover banking malware
, which has been updated to steal login credentials for Bitcoin exchanges. That warning was sounded by cybercrime expert Etay Maor, who works for IBMs Trusteeer. He said in an interview that the Bitcoin-targeting malware variant has been active since at least Nov. 29.
This Gameover variant waits until an infected user attempts to log into the BTC China website, Maor said in a related
blog post
. When this occurs, the malware steals the victims username and password and suspends the session temporarily. That pause is so the malware can launch a social engineering attack against the user, by employing HTML injection to request that the user of the infected PC share the one-time password sent by BTC China to authorize the transaction.
Once the cybercriminal has the victims credentials he can easily perform an account takeover and assume control of the Bitcoins associated with the account, Maor said.
The Gameover variant is just the latest attack to be launched against Bitcoin users and exchanges. Many previous attacks have
targeted -- and drained -- free e-wallet services
that allow people to store their Bitcoins online. One of the virtues of attacking those sites is that if a hacker is successful, he can sell the stolen cryptographic currency anonymously.
By definition, it wont be traceable, said Maor.
Mathew Schwartz is a freelance writer, editor, and photographer, as well the InformationWeek information security reporter.
InformationWeek Conference
is an exclusive two-day event taking place at Interop where you will join fellow technology leaders and CIOs for a packed schedule with learning, information sharing, professional networking, and celebration. Come learn from each other and honor the nations leading digital businesses at our InformationWeek Elite 100 Awards Ceremony and Gala.
You can find out more information and register here
. In Las Vegas, March 31 to April 1, 2014.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
Bitcoin Hit By Gameover Malware, Chinese Crackdown