About Thawte

• Contact Us
• Worldwide Sites
• Why Thawte

Security experts recently tallied up the number of active malware strains that target users' Bitcoin wallets. As digital currency is now being accepted in a number of locations - both online and in the real world - it is becoming increasingly important to ensure that this legal tender is protected from cyberthieves.

Bitcoin-stealing malware
According to Forbes, security firms have identified 146 malware samples that were specifically designed to steal Bitcoins from online wallets. This is a considerable increase from the 45 strains operating in the wild last year and the 13 in existence in 2012. As more users adopt digital currency, the valuable Web-based cash will become a growing target for cybercriminals, sparking the continuing trend of Bitcoin-stealing malware.

Security researcher Pat Litke told Forbes that the fluctuating value of the coinage has also driven malware creation.

"With the increase in the price of Bitcoin, we also saw an increase in the number of malware samples flooding into the wild," Litke said.

One such sample, dubbed Pony, has attacked more than 100,000 endpoints to date, according to Reuters. The malware strain's name was inspired by the moniker of the cybercrime ring currently operating the sample. The group has stolen countless Bitcoins​ in a total of 85 virtual wallets, although the exact value of the thefts has not yet been determined.

"It is the first time we saw such a widespread presence of this type of malware," security research director Ziv Mador told Reuters. "It was on hundreds of thousands of machines."

CoinDesk reported that such malware samples have affected download sites as well, including Download.com and MacUpdate. This attack is a Mac OS X trojan horse disguised as a private Bitcoin wallet application being referred to as CoinThief.A. The sample oversees victims' online activities to snoop and steal authentication information for virtual wallets and other Bitcoin platforms.

Bitcoin protection tips
Although digital currency is increasingly permeating the radar of cyberattackers, users can protect themselves from theft by utilizing a few safeguarding practices, including the use of separate virtual wallets.

CoinDesk recommended keeping siloed storage locations for spending and saving purposes. Web wallets should be treated similar to checking accounts, used for planned purchases that will take place in the near future. For example, individuals should utilize their mobile wallets on their smartphones or tablets only for small transactions during travels, according to Naked Security. The rest of users' digital currency should be stored in a separate place, ideally offline. The source suggested using a "cold storage" strategy for savings, where Bitcoins are kept in an offline medium like a printed QR code or plain text file archived on a USB drive.

However, despite storage locations, all wallets should be protected with a password or other form of authentication. Passwords should be complex and be comprised of a variety of characters at least eight figures in length. 

Bitcoin users should also backup their digital currency reserves on a regular basis to prevent any losses. Naked Security advises backing up online coins to an encrypted storage device after each transaction for added protection. Additionally, online purchases should only be made through trusted retailers with transaction security in place, including an SSL certificate. 

Protect data in transit with an SSL certificate today. 

corporate office

Thawte
The Gateway
Century Lane
Century City, 7441
Cape Town
South Africa

Postal Address:
P O Box 15986
Panorama 7500
Cape Town
South Africa

Call: +353 1 793 9141
Fax: +27 21 819 2950