Hackers Use Binance Blockchain to Distribute Malware from Hacked Websites
-
Cybercriminals are using Binance Smart Chain contracts to distribute malicious code injected into hacked websites. This technique, called EtherHiding, is highly resilient.
-
The hackers compromise WordPress sites to inject scripts that fetch malware payloads from BSC contracts. The blockchain allows changing domains easily.
-
The injected malware shows fake browser update overlays to trick users into downloading executables.
-
Blockchain contracts run autonomously and cannot be taken down, only blacklisted. This makes attacks persistent.
-
The abuse of blockchain could become common in attacks, as it provides resilient hosting. WordPress security is crucial to mitigate threats.