Mac trojan steals Bitcoins

Mac trojan steals Bitcoins

Summary: An app which claims to send and receive payments on Bitcoin Stealth Addresses, OSX/CoinThief.A instead monitors traffic and steals Bitcoins.

TOPICS: Security, Apple

SecureMac is reporting a new Mac trojan they call OSX/CoinThief.A. The malware targets Mac users and spies on web traffic to steal Bitcoins. They say the malware is in the wild and have received multiple reports of stolen Bitcoins.

The software was distributed through an app called "StealthBit" which, until recently, was available for download from Github. The source code version did not match the precompiled version, the latter of which contained the malicious payload. StealthBit purports to be an app to send and receive payments on Bitcoin Stealth Addresses.

The malware installs browser extensions for Safari and Google Chrome and a separate background program, all of which monitor all web traffic looking for login credentials for Bitcoin websites and wallet sites. It reports these credentials to a remote server. The browser extensions identify themselves as popup blockers.

SecureMac cites a recent post on reddit of a user who lost 20 Bitcoins, worth well over $10,000 US.

Topics: Security, Apple

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to join the discussion
  • Welcome to the world of BitCoins.

    This is just the start and it will continuously get worse. A currency that is favored primarily by crooks, thieves and hit men will never be a "secure" commodity.
    • It is as secure as you make it

      Downloading unverified software has never been a good idea
    • Bitcon strikes again

      Sorry, I just love this kind of stuff. Plus, I hate Bitcoin, know.
      • good thing for you, then

        that there is no such thing as malware that steals dollars.
    • "Secure" commodity?

      Just how secure is the U.S. Dollar? It's worth a tiny fraction of what it was before the private Federal Reserve took over our nation's banking. Those crooks and thieves not only have the in-servitude of our corporate-government complex, but they also have the keys to a very powerful military with which to ensure that our fiat currency remains "secure".

      As for "hit men", there's a long trail of dead left in the wake of the western central banks (Federal Reserve) preventing "rogue" currencies from getting traction in the "free market".

      I think we have to re-think who the "crooks, thieves, and hit men" really are and what makes a currency "secure".
  • You overlooked another possibility

    No government wants BitCoins to succeed in replacing their own controlled currency and tax revenue system

    There is no way of knowing for certain, that a government agency was NOT the developer of this Trojan.

    Don't overrule government sabotage, no matter how extreme it may seem.
    • One reason/example for wanting to track your money/savings...

      Remember Cyprus taxing deposits between 6.75% and 9.99% of savings accounts to bail themselves out of a 15.8 Billion Euro crisis.

      Don't be so naive to think that other countries (even the USA) wouldn't think of doing the same thing, when you consider the FACT that the USA is currently over 17,322,885,7xx,xxx and climbing every second.

      ~Best wishes keeping what you earned.
      • correction

        Now currently over $17,322,886,xxx,xxx.xx IN DEBT and climbing every second
        • Not to mention...

          ...nearly 128 TRILLION in unfunded liabilities. (For comparison purposes, total national assets are only about 109 Trillion)
    • Paranoia may destroy ya!!!

      You get the message!
  • Maybe I'm just to old.

    But virtual money does not seem like a good idea. Just like virtual reality it should only be for entertainment. Time to join the real world folks and get some gold, cash or credit instead of imaginary money.
    • Too hard to use gold and cash online

      And credit carries high transaction fees and various restrictions
    • Cash and Credit ARE Imaginary Money

      Cash is just another "fiat" currency that has only the value that a government assigns it through the printing of additional paper notes or, in the case of the Fed, simply adding zeroes. Think Weimer Republic or Zimbabwe. The folks that had their "Cash" probably thought that they had real money at one point, until the bottom fell out.

      As for credit... It's no different than Bitcoins really. You're just moving imaginary money from one place to another through the use of a holding/clearing company. Several credit cards have been hacked in the recent past. Not exactly the safest way to purchase, but so convenient, and backed by the credit card companies (so far).

      The theory of Bitcoin is very attractive since it's an anonymous way to barter with global neighbors. Countries. states (provinces, etc.) and local taxing authorities have so much to lose if we adopted Bitcoin transaction en masse, that I believe governments around the world will sabotage it any way they can. From hacking it, giving it bad publicity and making it illegal. Powerful people would become less powerful if they no longer had the traditional weapons of currency manipulation at their disposal.
    • All money is virtual

      x I'm tc
  • MAC targeted

    I wonder why Mac's were targeted?
    • they cant be hacked

      Well the Mac fanbois now have there own malware now..
      • This has NOTHING to do with hacking Macs. You know what a trojan is, right?

        • Someone Touched a nerve...

          Sensitive much?
        • Right. Until we see the blog hedline "Windows trojan steals Bitcoins"

          then I'm guessing we'll see all sorts of replies stating "how insecure Windows is because it was hacked", or whatever

          And those that blame the user and not Apple for this Mac Trojan, will suddenly blame Microsoft and not the users, for the Windows version.

          • It'll be a matter of time, Mr. Farrel

            before an even larger bitcoin grab hits Windows.