Need your Mt. Gox bitcoins back? Steer clear of this website

A suspicious website tries to get people to download what is likely a bogus version of Flash player

A spam campaign is targeting those who lost bitcoins with the shutdown of the Tokyo-based bitcoin exchange Mt. Gox.

A spam campaign is targeting those who lost bitcoins with the shutdown of the Tokyo-based bitcoin exchange Mt. Gox.

Empty-handed customers of bankrupt bitcoin exchange Mt. Gox are being targeted in a ploy likely intended to distributed malware.

A spam message with the awkward phrase "Mt. Gox return to customers the bitcoins" in the subject line has been seen circulating, according to a Reddit user.

The bait targets the hundreds of thousands Mt. Gox customers locked out of their accounts when the company said 750,000 customer bitcoins, plus 100,000 of its own, disappeared, likely due to fraud. The company filed for bankruptcy in Tokyo District Court on Friday, leaving customers in a limbo.

The message includes a link to a website that clones the format of The Wall Street Journal although the domain name doesn't try to spoof the publication. The Web page shows a video box with a prompt to install Adobe System's Flash Player.

Fake versions of Flash Player have long been used by hackers, who hope victims will install whatever substitute program they're offering.

"Sites offering a faint ray of hope in the form of 'Mt. Gox is going to fix it all and please install this file, thanks' could well add more misery to an already considerable pile," wrote Chris Boyd, a malware intelligence analyst with Malwarebytes, who took at look at the site. "As always, steer clear."

Although Malwarebytes hasn't done a full analysis of the file behind the Flash Player facade, Boyd wrote a ".rar" file is downloaded.

"The infection rate for this one may end up being quite low, as one would imagine that anybody versed in the art of bitcoins is not likely to bother unzipping a .rar file to extract some random files," Boyd wrote.

Send news tips and comments to Follow me on Twitter: @jeremy_kirk

Join the CSO newsletter!

Error: Please check your email address.

Tags securityDesktop securityMalwarebytesdata protectionmalware

More about Adobe SystemsMalwarebytesWall Street

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Jeremy Kirk

Latest Videos

  • 150x50

    CSO Webinar: Will your data protection strategy be enough when disaster strikes?

    Speakers: - Paul O’Connor, Engagement leader - Performance Audit Group, Victorian Auditor-General’s Office (VAGO) - Nigel Phair, Managing Director, Centre for Internet Safety - Joshua Stenhouse, Technical Evangelist, Zerto - Anthony Caruana, CSO MC & Moderator

    Play Video

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

More videos

Blog Posts

Market Place