Kaspersky Uncovers YouTube Crypto Malware Blackmail Scheme
Cybersecurity firm Kaspersky has exposed a malware blackmail campaign on YouTube, where attackers exploit copyright strikes to force influencers into distributing malicious links. This scheme revolves around SilentCryptoMiner, a crypto-mining Trojan that preys on content creators' trust.
The SilentCryptoMiner Threat
Hackers disguise malware as tools for bypassing digital restrictions. Once installed, SilentCryptoMiner mines cryptocurrencies like Ethereum (ETH) and Monero (XMR) while using the Bitcoin blockchain to control botnets. Kaspersky has detected over 2.4 million instances of Windows Packet Divert drivers being used to manipulate network traffic.
YouTubers Targeted Through Copyright Strikes
A YouTuber with 60,000 subscribers unknowingly promoted malware. After removing the link, they were blackmailed with false copyright claims, forcing them to repost malicious links under threat of channel shutdown. Experts warn that similar tactics could extend to other platforms like Telegram.
Growing Cybersecurity Risks in Crypto
Kaspersky also reported SparkCat, a Trojan that steals sensitive data from image galleries on mobile devices. Meanwhile, Arkham has launched the KOL Label feature to track influencer wallets and verify whether their promotions are genuine.
As cybercriminals refine their tactics, users must be cautious when downloading software. The exploitation of trusted influencers underscores the urgent need for stronger cybersecurity measures.