Changpeng CZ Zhao, CEO of major crypto exchange Binance, warned about the newest hack targeting crypto assets in a tweet. This was a stern warning that users should not download files.
Binance wallet users can receive a file from a friend. Even if you know this friend in real life, your friend’s security may have already been compromised. This person may send you a file containing malicious code targeting your crypto funds. This file, named “exchange fee comparison.xsl”, is a weaponized Excel file.
Changpeng Zhao also mentioned a Microsoft Security Threat Intelligence post published this Tuesday in his tweets. This blog post explains that the cryptocurrency market has been on the rise in recent years and the threat factors that directly target not only investors but also organizations seeking financial gain.
According to the Microsoft Security Threat Intelligence blog, attackers used scams, vulnerabilities, fake apps, and information theft to steal cryptocurrency funds.
One of the newest and most serious threats in this report is DEV-0139. DEV-0139 has joined some Telegram chat groups to scrutinize crypto investment companies. Meanwhile, communication between VIP members and crypto exchanges was facilitated, and targets were set.
On the other hand, the threat actor contacted VIP members in the form of a representative of another crypto investment company. In October 2022, he invited these members to a different chat group where they received feedback on the exchange fee structure. Right after, he shared the excel file named “exchange fee comparison.xsl” and captured some of the crypto funds of VIP members.