FBI, GCHQ joint report warns of crypto-targeting Infamous Chisel malware

Photo of author

By BitcoinWiki News

Key Takeaways:

– A joint advisory report by multiple agencies reveals the use of new malware called Infamous Chisel.
– The malware targets cryptocurrency wallet and exchange applications, among other data.
– It is associated with a hacking unit within Russia’s military intelligence agency known as Sandworm.
– The malware provides continuous access to compromised Android devices through the Tor network.
– It gathers and sends out victim data periodically.
– Specific application directories, including Brave, Binance, and Coinbase, are targeted.
– The Android Keystore system, which stores private keys, is also targeted.
– The malware components lack concealment techniques but still pose a serious threat due to the information they can collect.
– Cybercriminals are finding new ways to breach security protocols to steal digital assets.
– Last month, warnings were issued regarding malware targeting Apple users’ crypto assets through fake blockchain games.


A joint advisory report from multiple cybersecurity agencies has revealed a new malware called Infamous Chisel, which is being used by Russia’s GRU military intelligence agency, known as Sandworm, to target cryptocurrency wallet and exchange applications. The malware allows continuous access to compromised Android devices via the Tor network and periodically gathers and sends victim data. It specifically targets directories related to various applications, including Brave, Binance, Coinbase, Trust crypto wallet, Telegram, and Discord. The malware components lack basic obfuscation or stealth techniques, but they still pose a serious threat due to their ability to collect valuable information. This report highlights the increasing efforts by cybercriminals to breach security protocols and steal digital assets.

This is sponsored by: Learn Bitcoin Option

Leave a Comment