Cybersecurity firm Doctor Web recently reported that it detected malware disguised as legitimate software, such as office programs, game cheats, and online trading bots. The cryptojacking and stealing software infected more than 28,000 users, mainly in Russia, but also in Belarus, Uzbekistan, Kazakhstan, Ukraine, Kyrgyzstan, and Turkey. According to Doctor Web, the hackers only took about $6,000 worth of cryptocurrency. However, it is not clear how much money the malware's creators made from cryptocurrency mining. The cybersecurity company said that the malware's sources include fraudulent GitHub pages and YouTube video descriptions with malicious links. Once a device is infected, the secretly deployed software hijacks computing resources to mine cryptocurrency. "Clipper" also monitors the crypto wallet addresses that users copy to their device's clipboard, and the malware then replaces them with addresses controlled by the attackers - this is how they steal small amounts of cryptocurrency.