This ransomware will steal your Discord account and encrypt all your files for good measure
>
A new ransomware family has been detected targeting the cryptocurrency community.
Cyble cybersecurity researchers recently discovered a strain they dubbed “AXLocker” that, aside from the usual encryption of all files found on the endpoint, also ends up stealing Discord authentication tokens from its victims.
Discord is a communication platform that has been around for quite some time but has recently found new life in the cryptocurrency community. NFT projects, crypto tokens and similar start-ups have chosen Discord as their communication platform of choice.
term of 48 hours
When a user logs into Discord, the platform installs a small token on the computer so that the user doesn’t have to authenticate every time they come back. By stealing this token, attackers gain access to the victim’s account even without knowing their passwords or other credentials.
Other than that, AXLocker is nothing special. Once activated, the malware (opens in new tab) targets specific file extensions and avoids some directories. It encrypts the files using the AES algorithm, but it does not change their extensions – they keep their normal file names. It requires payment in cryptocurrency and gives users 48 hours to comply.
While the NFT and crypto community is used to cyber-attacks and various criminals go after their digital assets, stealing Discord tokens makes this ransomware attack a lot more powerful.
After all, if an owner or developer of such a project were to have their Discord tokens taken away, crooks could misuse their identity to launch fake campaigns and steal the community members’ NFTs and cryptocurrencies.
Yet according to Beeping computerAXLocker’s targets are first and foremost – consumers.
There was no word on AXLocker’s distribution method. Typically, attackers would use phishing emails, fake landing pages, and social engineering (fake LinkedIn identities, for example) to trick people into downloading and running the malware.
Through: Beeping computer (opens in new tab)