Malware scripts indelibly hidden in blockchain
Attackers first hid malware and malicious scripts as a data source on Cloudflare. When Cloudflare reacted and wanted to delete the data, the attackers came up with a new idea: they hid them disguised as cryptocurrency transactions (smart contract) in the immutable Binance Smart Chain (BSC) blockchain. With the so-called ClearFake, website visitors receive a message that their browser is out of date and needs to be updated. If the visitor clicks on the link, malware files are automatically reloaded from a compromised Cloudflare worker host. So much for the known chain of attacks. “EtherHiding” – undeletable malware in blockchain But as…