On May 9, PANews reported that according to Decrypt, a latest report from cybersecurity company Check Point Research (CPR) shows that the cryptocurrency theft malware Inferno Drainer, which claimed to have ceased operations in November 2023, is still active and has stolen over 9 million dollars in the past six months. This malware has cumulatively attacked over 30,000 cryptocurrency wallets, primarily targeting Ethereum and BNB Chain users. Researchers found that Inferno Drainer's smart contract has continued to operate since its deployment in 2023, with the latest version utilizing single-use smart contracts and on-chain encryption configurations, significantly enhancing its concealment. Its command and control servers obfuscate communications through proxy systems, making the attacks more difficult to trace. Recently, this malware has implemented phishing attacks by spoofing the verification interface of the well-known Discord bot Collab.Land, using 'subtle visual differences' to lure users into signing malicious transactions. CPR warns that since the genuine Collab.Land itself requires wallet signature verification, even experienced users may lower their guard. CPR advises users to verify the authenticity of the platform before connecting their wallets.
