Australia markets close in 5 hours 12 minutes
  • ALL ORDS

    6,405.90
    +9.10 (+0.14%)
     
  • ASX 200

    6,193.30
    +8.70 (+0.14%)
     
  • AUD/USD

    0.7050
    -0.0001 (-0.02%)
     
  • OIL

    41.51
    +0.05 (+0.12%)
     
  • GOLD

    1,914.60
    -0.80 (-0.04%)
     
  • BTC-AUD

    16,874.00
    +1,199.14 (+7.65%)
     
  • CMC Crypto 200

    239.54
    +0.62 (+0.26%)
     
  • AUD/EUR

    0.5958
    -0.0001 (-0.01%)
     
  • AUD/NZD

    1.0715
    +0.0003 (+0.02%)
     
  • NZX 50

    12,463.86
    +1.81 (+0.01%)
     
  • NASDAQ

    11,677.84
    +43.49 (+0.37%)
     
  • FTSE

    5,889.22
    +4.57 (+0.08%)
     
  • Dow Jones

    28,308.79
    +113.37 (+0.40%)
     
  • DAX

    12,736.95
    -117.71 (-0.92%)
     
  • Hang Seng

    24,569.54
    +27.28 (+0.11%)
     
  • NIKKEI 225

    23,567.04
    -104.09 (-0.44%)
     

NetWalker Ransomware Gang Is Storing $7M in Bitcoin in SegWit Cold Storage

Danny Nelson
·2-min read

NetWalker ransomware, which last week triggered cybersecurity flash warnings from the Federal Bureau of Investigation (FBI), has extorted $25 million in bitcoin from its victims during the months of the pandemic, according to a report by McAfee and CipherTrace.

  • NetWalker is a “ransomware-as-a-service” that gains its access through COVID-19 phishing emails, encrypts infected systems and steals internal documents. Ransomware operators then threaten to publish victims’ documents if they fail to pay up.

  • Victims, most of whom are large organizations such as companies and governments, appear to been obliging the hackers throughout the pandemic. McAfee and CipherTrace traced 2,795 bitcoin ($25 million) to NetWalker wallet addresses from March 1 through July 27.

  • NetWalker’s developers refined their handling of bitcoin payments months before the pandemic began by swapping in SegWit addresses in place of legacy wallets, the report said.

  • “This transition into SegWit could indicate that they are utilizing a new hardware wallet to store their BTC or just an indication of a desire for cheaper transactions,” said Pamela Clegg, director of financial investigations at CipherTrace.

  • Clegg told CoinDesk that “large amounts of bitcoin” – up to 640 – appear to be sitting in cold storage. She said smaller amounts have been deposited at Russian crypto exchange CointoCard.org.

  • The cybersecurity report follows last week’s warning from the FBI that NetWalker has been successfully exploiting COVID-19 in recent months. The FBI warns targeted institutions against paying hackers’ bitcoin ransom payments.

See also: Travel Management Firm CWT Pays Out $4.5M in Bitcoin After Ransomware Attack

Related Stories