Pony Loader 2.0, also referred to as Fareit, has been circulating since earlier this year, but the source code was put up for sale in May, leading researchers with security company Damballa to expect an uptick in malware fitted to steal cryptocurrency wallets.
The cryptocurrency wallets targeted by Pony Loader 2.0 include Bitcoin, Litecoin, MultiBit, Namecoin, Terracoin, Primecoin, Feathercoin, NovaCoin, MegaCoin, Digitalcoin, Zetacoin, Fastcoin, Tagcoin, Bytecoin, Florincoin, and Luckycoin, but even more are listed in a Tuesday blog post.
“This [cryptocurrency-stealing] ability across all those wallets is being marketed by the sellers,that in my opinion is not surprising. The attackers are motivated to get as much financial gain as possible.” Said spokesmen Damballa.com
The sellers, are believed to be from Russia and are additionally marketing other features and upgrades as well – which are related to improvements in password collecting, but others that include added options and bug fixes, according to the post.
Pony Loader 2.0 still maintains its ability to steal credentials and spread other malware, as well as contains a list of words used to brute-force user accounts being a very dangerous mallware for cryptocurrency world .
So far Damballa has observed numerous Pony Loader 2.0 infections across the globe, Palmer said, explaining that people may be infected with the trojan through malicious links in emails or via exploit kits such as Orange, Nuclear, Nutrino, and BlackHole.
So be very careful from which source you guys download or you will lose all your Bitcoin or other cryptocurrencies funds !