All
Contribute!
BlockchainCrypto MarketCryptocurrency

Crypto users targeted in SourceForge malware attack via fake Microsoft Office softwares

CoinSurges
By CoinSurges

Share This Post

Cybercriminals are targeting crypto users by exploiting SourceForge, a well-known open-source software platform.

According to security experts at Kaspersky, malicious attackers upload fake Microsoft Office installers packed with hidden malware, including crypto miners and clipboard hijackers, to deceive unsuspecting users.

They noted that while the SourceForge project pages appear legitimate, the danger lies in their auto-generated subdomains. In one instance, Russia’s Yandex search engine indexed a fake domain, leading unsuspecting users to a page filled with counterfeit Office tools and download buttons.

Crypto Hack
Sample Search Query Results on SourceForge. (Source: SecureList)

Data from Kaspersky indicates that more than 4,600 incidents were recorded in the first quarter of 2025, with 90% of the affected users in Russia.

It was unclear if this attack had led to significant financial losses for crypto users.

The attack

In this attack, the hackers upload weaponized software to SourceForge’s project pages. These pages mimic legitimate Office-related tools, but the installers contain embedded scripts that deliver harmful payloads.

The trap begins with a small archive file named vinstaller.zip, only around 7MB. This is suspicious, as genuine Office software is significantly larger—even when compressed.

However, once the file is unzipped, it balloons into a 700MB installer packed with hidden scripts. These scripts silently fetch additional files from GitHub and scan the system for antivirus tools.

If no protection is detected, the installer loads crypto mining software and a clipbanker Trojan.

According to the blog post:

“ClipBanker is a malware family that replaces cryptocurrency wallet addresses in the clipboard with the attackers’ own. Users of crypto wallets typically copy addresses instead of typing them. If the device is infected with ClipBanker, the victim’s money will end up somewhere entirely unexpected.”

At the same time, one of the scripts sends user information to a Telegram bot, giving the hacker full access to sensitive data.

This campaign highlights how hackers leverage trusted platforms to bypass security systems and spread malware at scale.

The post Crypto users targeted in SourceForge malware attack via fake Microsoft Office softwares appeared first on CryptoSlate.

Read Entire Article
spot_img
- Advertisement -spot_img

Related Posts

SEC Sets Bullish Tone on On-Chain Markets as Blockchain Settlement Becomes Strategic Priority

The SEC is signaling a decisive push to move US financial markets onto blockchain infrastructure, framing on-chain settlement as a priority upgrade that could reshape post-trade systems and

Bitcoin To Retest $85,000 Mark In Coming Days – Here’s Why

Amid a steady price rebound in the Bitcoin (BTC) market, popular market analyst with the X username KillaXBT is predicting another significant correction in the forthcoming days Related Reading: Not

Ethereum Holds Support As Smart Money Steps In – What This Means For Price

Ethereum is holding firm above key support as smart money steps in, hinting at growing confidence beneath the surface With bullish signals and steady inflows aligning, the market now watches whether

Silver Breaks Into Record Territory—Schiff Says ‘The Silver Train Can’t Be Stopped’

Silver’s surge to record highs is flashing a warning on inflation, monetary policy, and hard-asset demand, as rising yields and the Fed’s latest pivot fuel a powerful rotation into precious

Is It More Profitable To Hold Bitcoin For The Short-Term? 2025 Numbers Are Here

Bitcoin’s 2025 price action has been anything but smooth, but one group of investors has quietly dominated the year’s profit statistics Short-term holders, which are classified as addresses

XRP Mirrors 2016 Trend That Led To 69% Crash Before 110,000% Rally

XRP has struggled to create any upside traction over the past few days, with the price rejecting above $215 in the middle of the week and now back to lingering just above the $2 level  A new
Previous article
Pro-Bitcoin Canadian Conservative Leader Pierre Poilievre Holds Massive Rally
Next article
NFT Drama Ends For Shaquille O’Neal With Hefty $11 Million Settlement

Categories:

Hot right now:

Company:

Follow on:

Crypto Coin Live Stats

Coinsurges provides coverage of fintech, blockchain, and Bitcoin, delivering the most recent news and analyses on the future of money. Stay up-to-date with live prices, charts, and trading options for the top exchanges. Keep track of the day's top cryptocurrency gainers and losers, as well as which coins have experienced gains and losses in the past 24 hours.
Trust Coinsurges as your go-to source for all news and updates in the industry.