Statcounter – WindowsTechs.com

StatCounter Analytics Code Hijacked to Steal Bitcoins from Cryptocurrency Users

Posted on November 8, 2018 by Mohit Kumar

Late last week an unknown hacker or a group of hackers successfully targeted a cryptocurrency exchange with an aim to steal Bitcoins by compromising the web analytics service it was using.

ESET malware researcher Matthieu Faou this weekend spotted mal… Continue reading StatCounter Analytics Code Hijacked to Steal Bitcoins from Cryptocurrency Users→

JavaScript attack aimed to reroute bitcoin transactions

Posted on November 7, 2018 by Joe Warminsky

A newly identified JavaScript vulnerability in StatCounter, a popular web analytics platform, allowed hackers to attempt to re-route bitcoin transfers associated with a specific cryptocurrency exchange. Attackers were able to inject a piece of their own code into JavaScript associated with StatCounter’s system, according to research from ESET. The malicious code searches for URLs that contain “myaccount/withdraw/BTC,” with the intention of replacing the destination address of transfers with an address belonging to the attackers, ESET reports. The attack target appears to be cryptocurrency trading site Gate.io, the report says, given that it is the only one that uses the “myaccount/withdraw/BTC” Uniform Resource Identifier (URI). “The users’ funds are safe,” Gate.io said, but it urged customers to maximize the security levels on their accounts. ESET said it notified the company as soon as it discovered the hack, which it labeled as a “supply chain” attack, given where the malicious code appeared. The company said Wednesday that it has stopped […]

The post JavaScript attack aimed to reroute bitcoin transactions appeared first on Cyberscoop.

Continue reading JavaScript attack aimed to reroute bitcoin transactions→

StatCounter web analytics script poisoned to steal Bitcoins

Posted on November 7, 2018 by Graham Cluley

Security researchers at ESET discovered that hackers managed to compromise StatCounter and change the analytics script used by hundreds of thousands of websites.
Continue reading StatCounter web analytics script poisoned to steal Bitcoins→

Attackers breached Statcounter to steal cryptocurrency from gate.io users

Posted on November 7, 2018 by Zeljka Zorz

Web analytics company Statcounter and cryptocurrency exchange gate.io have been compromised in another supply-chain attack, which resulted in an unknown number of gate.io customers getting their money stolen, according to ESET. The attack The compromis… Continue reading Attackers breached Statcounter to steal cryptocurrency from gate.io users→