The latest US and international partners discovered that a new piece of malware called “Notorious Chisel” was created specifically for Android devices. The US National Security Agency (NSA), the Cyber Security and Infrastructure Agency (CISA), the Federal Bureau of Investigation (FBI) and the UK’s National Cyber Security Center (NCSC) published a joint report warning users. stay alert for newly discovered data. malware used to target crypto wallets and exchanges.
An advisory report revealed a malware campaign by Russian cyber actors against the Ukrainian military. Russian state-sponsored malware A new type of malware designed to target Android devices used by the Ukrainian military. Known as the infamous Chisel, this malware allows unauthorized access to compromised devices and is specifically designed to scan files, monitor network traffic and sometimes extract sensitive data from compromised mobile phones.
The malware has been linked to the activities of Sandworm, a cyber warfare unit operating under the Russian military intelligence GRU.
The stolen data includes information from the Binance and Coinbase exchange directories and the Trust Wallet app. The report also highlighted that all files in these listed folders are indiscriminately filtered, regardless of their file type.
Eric Goldstein, CISA’s deputy director for cybersecurity, said the US government has subpoenaed Russian actors involved in several malicious cyber activities targeting the US and allied partners for “cyber espionage and potential disruptive activity”. The official further stated, “Today’s joint report reflects the value of deep cooperation among international cyber defense partners, the need for all organizations to keep their shields up to detect and mitigate Russian cyber activity, and the importance of continuing to focus on maintaining operational resilience in all situations.”In addition, the report found that the components of Infamous Chisel are of low to medium complexity and appear to be designed to avoid detection or concealment of malicious activity. While the components lack basic obfuscation or stealth technology to hide their activity, the actor may have deemed such measures unnecessary because many Android devices lack a host-based detection system, the report explained. Russian military secures $20 million worth of cryptocurrency Russian fundraising groups have raised $20 million in cryptocurrencies despite sanctions imposed by the United States and other countries. More than 80% of funds linked to sanctioned pro-Russian entities were found in centralized crypto exchanges, indicating that they were the most common place to invest assets. In addition to these centralized platforms, entities have also interacted with DeFi protocols, including inter-chain bridges, NFT services and DEXEs.