EtherRAT Malware Uses Ethereum Smart Contracts to Bypass Security

EtherRAT is a malware strain that leverages Ethereum smart contracts to conceal its command-and-control (C2) infrastructure via a technique called EtherHiding, enabling attackers to bypass traditional security measures. The malware targets cryptocurrency wallets and user credentials, exfiltrating sensitive data through obfuscated transactions on the blockchain. No specific threat actors, dates, or CVE identifiers were disclosed in the report. The attack vector exploits the decentralized and immutable nature of Ethereum smart contracts to evade detection by conventional security tools. Impacts include unauthorized access to digital assets and potential credential theft for further compromise.