A new variant dubbed "Twizt" has hijacked 969 transactions and stolen the equivalent of nearly $500,000 USD.
December 16, 2021 By Dark Reading Staff
Check Point researchers have observed a new variant of the Phorpiex botnet targeting cryptocurrency users and stealing funds through a technique called "cryptocurrency clipping."
Phorpiex has been a known threat since 2016, primarily conducted crypto-jacking, ransomware, cryptocurrency clipping, and sextortion spam campaigns. This past summer, the botnet's command-and-control (C2) server activity dropped, according to the Check Point Research team. The C2 servers were shut down in July 2021; in August, an announcement from its owners said the Phorpiex was going out of business.