“EtherHiding”: Hackers Deploy Sneaky Malware Tactics in Binance Smart Contracts

In a concerning development, cybersecurity researchers have unearthed a novel technique known as “EtherHiding,” wherein threat actors utilize Binance Smart Chain (BSC) smart contracts to conceal and distribute malicious payloads. This method poses a new challenge to cybersecurity, as hackers leverage blockchain transactions to manipulate BNB Smart Chain smart contracts, enabling them to hide malware and disseminate malicious code.

Security researchers at Guardio Labs detailed the “EtherHiding” technique in an October 15 report, revealing that cybercriminals compromise WordPress websites by injecting code that retrieves partial payloads from blockchain contracts. The attackers ingeniously hide these payloads within BSC smart contracts, essentially transforming them into anonymous free hosting platforms for malicious code.

What makes “EtherHiding” particularly insidious is its adaptability. The attackers can effortlessly update the code and alter their attack methods at will. Recent instances of this technique involve fake browser updates, where victims are enticed into updating their browsers through deceptive landing pages and links. The payload, which contains JavaScript, fetches additional code from the attacker’s domains, culminating in full-site defacement with fraudulent browser update notices that distribute malware.

The flexibility of this approach allows threat actors to modify the attack chain seamlessly by swapping out malicious code with each new blockchain transaction. Guardio Labs highlights the challenge of mitigating such attacks, with Nati Tal, Head of Cybersecurity at Guardio Labs, and fellow researcher Oleg Zaytsev emphasizing the difficulty in combating this dynamic threat.

Once infected smart contracts are deployed, they operate autonomously, leaving Binance with limited options. The platform must rely on its developer community to identify and flag malicious code in contracts as they are discovered.

Guardio emphasized the heightened vulnerability of WordPress sites, which power approximately 43% of all websites. The researchers issued a cautionary note, stating, “WordPress sites are so vulnerable and frequently compromised, as they serve as primary gateways for these threats to reach a vast pool of victims.”

As the cybersecurity landscape continues to evolve, the discovery of “EtherHiding” underscores the critical need for website owners, especially those on WordPress, to bolster their security practices and defenses against emerging threats that leverage blockchain technology for nefarious purposes.

 

Subscribe

Related articles

America’s Bitcoin Plan: A 35% Debt Slash or Fantasy?

The idea of the United States holding a Bitcoin...

500k Identities: Internet Identity Leads 2024

As 2024 draws to a close, the Internet Computer...

UAE’s $40 Billion Bitcoin Bet Signals Crypto Powerhouse Status

The United Arab Emirates is making waves in the...

Rate Cuts Abound, But Inflation Clouds the Horizon

Central banks across the globe are embracing rate cuts...

ICP’s Gravity Game: How $BOB Keeps the Ecosystem in Check

The Internet Computer  ecosystem often feels like a balancing...
Maria Irene
Maria Irenehttp://ledgerlife.io/
Maria Irene is a multi-faceted journalist with a focus on various domains including Cryptocurrency, NFTs, Real Estate, Energy, and Macroeconomics. With over a year of experience, she has produced an array of video content, news stories, and in-depth analyses. Her journalistic endeavours also involve a detailed exploration of the Australia-India partnership, pinpointing avenues for mutual collaboration. In addition to her work in journalism, Maria crafts easily digestible financial content for a specialised platform, demystifying complex economic theories for the layperson. She holds a strong belief that journalism should go beyond mere reporting; it should instigate meaningful discussions and effect change by spotlighting vital global issues. Committed to enriching public discourse, Maria aims to keep her audience not just well-informed, but also actively engaged across various platforms, encouraging them to partake in crucial global conversations.

LEAVE A REPLY

Please enter your comment!
Please enter your name here