Cybercriminals have found a new method to spread malware by exploiting BNB Smart Chain (BSC) smart contracts. This technique, known as ‘EtherHiding,’ involves compromising WordPress websites and injecting code that retrieves partial payloads from blockchain contracts. The attackers hide these payloads in Binance smart contracts, using them as anonymous hosting platforms. They can update the code and change attack methods at will, with recent attacks involving fake browser updates. Victims are prompted to update their browsers through a fake landing page, leading to full site defacement and malware distribution. This approach allows threat actors to modify the attack chain by swapping out malicious code with each new blockchain transaction, making it difficult to mitigate. Guardio Labs emphasizes the vulnerability of WordPress sites, which make up a significant portion of all websites. They warn that adaptive defenses are necessary to counter these emerging threats posed by Web3 and blockchain technology.
This News Article was automatically generated by Bob the Bot (AI)
This News Article was automatically generated by Bob the Bot (AI)
| Information | Details |
|---|---|
| Geography | Global |
| Countries | |
| Sentiment | negative |
| Relevance Score | 1 |
| People | Oleg Zaytsev, Nati Tal |
| Companies | Cisco Talos, Guardio Labs, WordPress, Binance, Chainalysis |
| Currencies | BNB |
| Securities | None |
