A crypto mining malware has made its way into thousands of computers.
The great thing is that this virus was in the form of Google Translate app.
This malware named “Nitocode” is developed in Turkey.
New Delhi. Recently, a crypto mining malware has made its home in thousands of computers. The great thing is that this virus was in the form of Google Translate app. According to a study by Check Point Research (CPR), this malware named “Nitokod” has been developed by a Turkish company as a desktop application for Google Translate.
Since Google has not yet developed a separate app for this translation service, many users of Google have downloaded this app on their computer for translation. Once the app is downloaded, it creates a major crypto mining operation set-up on the infected device.
Once the app is downloaded, this virus starts an installation process in the computer through a scheduled task mechanism. Later, this dangerous malware creates a setup for mining the Monero cryptocurrency. As a result, it provides control to campaigners and gives scam users access to infected computers. The computer user is not aware of this access at all. Later it destroys the system.
Virus will be found after searching google translate
The CPR report claims that after the malware is executed, it connects to the C&C servers and starts mining after configuring the XMRig crypto miner. This software can be easily found on Google. All you have to do is search “Google Translate Desktop download” and the software will be in front. Trojan has been inserted in this application.
Computers attacked in 11 countries
It is being said that this “Nitocode” malware has been attacked in at least 11 countries. This malware is circulating since 2019. CPR continues to send alerts and updates about crypto mining campaigns to Twitter.
Such attacks have increased in the recent past
Such virus attacks are becoming common now. You must have also seen how apps with viruses have been removed from Google Play. According to Zscaler Threatlabz, earlier this year Joker malware infected 50 apps on the Google Play Store. Google had to remove all these apps from the Play Store. According to the Zscaler team, Joker, FaceSteller and Kooper were reaching people’s devices through malware apps. In which all these were found, Google also had to delete them from the store.