10 October 2017

Cryptocurrencies to Save the Banking Sector from Hackers

According to the annual report Hi-Tech Crime Trends 2017 presented by Group-IB at CyberCrimeCon, the total damage caused by targeted hacker attacks on the crypto-currency industry amounts to more than $168 million, and the income from attacks on cryptocurrency exchanges varies from $1.5 million (Bitcurex) to $72 million (Bitfinex). While a successful attack on a bank brings criminals only about $1.5 million on average. In addition to higher profitability, hackers are attracted by anonymity being one of the basic principles of the cryptocurrency industry.

Cryptocurrencies and related services represent an extremely dynamic and high-yielding market. With such a rate of development and money inflow, security issues are often considered by blockchain startups as being of minor importance. And hackers take advantage of this. The more successful a fintech project is, the larger its financial footprint or ICO. This makes it more attractive for attacks. In each case, attackers can use a wide range of existing techniques from commonplace phishing and interception of control over domains to vulnerabilities in source codes and targeted attacks with a view to gaining access to companies’ local networks.

Пример фишинговой страницы

An example of a phishing page used by attackers to collect secret keys and gain access to users’ e-wallets

The number of threats for cryptocurrency and blockchain projects recorded by our Threat Intelligence system has rocketed alongside the bitcoin rate. Hackers have already used vulnerabilities in source codes of smart contracts, gained access to secret wallets of cryptocurrency exchanges, and arranged leakages of user databases and hijacking of domain names. Owners of botnets are monitoring infected devices that access web and mobile applications of wallets, exchanges, and funds. The creation and promotion of phishing websites to intercept access to clients’ accounts is already being rolled out.

Dmitry Volkov

Dmitry Volkov

Head of Threat Intelligence Department, co-Founder of Group-IB

According to Chainalysis, hackers have managed to steal 10% of all the money invested in Ethereum ICO projects in 2017. The general damage in dollar equivalent amounted to $225 million; 30,000 investors lost $7,500 each on average.

Attacks of this scale were observed when online banking first began — hackers always follow the money. The fact attackers are „retargeting“ popular banking Trojans such as TrickBot, Vawtrak, Qadars, Tinba, Marcher to collect logins and passwords of cryptocurrency users suggests that they have found a new niche and might focus outside of the traditional banking sector in the nearest future.

In addition to higher profitability, targeting cryptocurrency gives attackers additional advantages as anonymity is the basis of the whole industry, as well as simpler and safer mechanisms for laundering and cash-out of stolen money.

The increased interest toward the cryptocurrency industry will probably result in a situation where more and more attacks will be conducted not only by financially motivated hackers, but also by state-sponsored groups that will try to use this new financial instrument to exert influence on the world economy.

The full version of Hi-Tech Crime Trends 2017

Group-IB is one of the leading providers of solutions dedicated to detecting and preventing cyberattacks, identifying online fraud, investigation of high-tech crimes and intellectual property protection, headquartered in Singapore. The company’s threat intelligence and research centers are located in the Middle East (Dubai), the Asia-Pacific (Singapore), Europe (Amsterdam), and Russia (Moscow).

Group-IB’s Threat Intelligence & Attribution system has been named one of the best in class by Gartner, Forrester, and IDC. Group-IB’s Threat Hunting Framework (earlier known as TDS) intended for the proactive search and the protection against complex and previously unknown cyberthreats has been recognized as one of the leaders in Network Detection and Response by the leading European analyst agency KuppingerCole Analysts AG, while Group-IB itself has been recognized as a Product Leader and Innovation Leader. Gartner identified Group-IB as a Representative Vendor in Online Fraud Detection for its Fraud Hunting Platform. In addition, Group-IB was granted Frost & Sullivan’s Innovation Excellence award for its Digital Risk Protection (DRP), an Al-driven platform for identifying and mitigating digital risks and counteracting brand impersonation attacks with the company’s patented technologies at its core.

Group-IB’s technological leadership and R&D capabilities are built on the company’s 18 years of hands-on experience in cybercrime investigations worldwide and 70,000 hours of cybersecurity incident response accumulated in our leading forensic laboratory, high-tech crime investigations department, and round-the-clock CERT-GIB. Group-IB is a partner of Europol.

Group-IB’s experience in threat hunting and cyber intelligence has been fused into an ecosystem of highly sophisticated software and hardware solutions designed to monitor, identify, and prevent cyberattacks. Group-IB’s mission is to fight high-tech crime while protecting our clients in cyberspace and helping them achieve their goals. To do so, we analyze cyber threats, develop our infrastructure to monitor them, respond to incidents, investigate complex high-tech crimes, and design unique technologies, solutions, and services to counteract adversaries.

Report an incident

Get 24/7 incident response assistance from our global team

APAC: +65 3159-3798
Europe: +31 20 226-90-90
EMA: +971 4 508 1605

Thank you for filling out the form! We will get back to you shortly.

We use cookies on the website to make your browser experience more personal, convenient and secure. You may block or manage the use of cookies, however, in some cases they’re essential to make this site work properly. Learn more about cookies in Group-IB Privacy And Cookies Policy.

Report an incident