Cybersecurity researchers have uncovered a fresh tactic employed by cybercriminals, wherein they embed malware within Binance smart contracts to deceive users into downloading false browser updates.

Dubbed 'EtherHiding," this method involves hackers breaching WordPress sites by injecting code that retrieves partial payloads from blockchain contracts.

These payloads are concealed within the Binance smart contracts, functioning as anonymous free hosting platforms.

The code can be modified or replaced at the attackers' discretion, with recent attacks involving counterfeit browser updates. 

The attackers can modify the attack sequence by changing the malicious code with each new blockchain transaction, presenting a challenge for mitigation efforts.

Once the infected smart contracts are deployed, they function autonomously, with Binance relying on its developer community to identify and flag malicious code within the contracts.

Security firm Guardio has advised WordPress website owners, who account for approximately 43% of all websites, to heighten their vigilance.