Copy link
Increase text size
Decrease text size
Link copied

New MacOS Virus Targets Crypto Wallets

Kaspersky Labs has identified previously undiscovered malware that infiltrates macOS users' computers via pirated software. The malware replaces genuine Bitcoin and Exodus wallets with compromised versions, threatening users' digital assets.

Tue, 23 Jan 2024, 09:15 am UTC

Kaspersky Labs recently discovered previously unknown malware, highlighting a concerning threat to macOS users who use pirated software.

This malicious software goes beyond infiltrating computers; it replaces legitimate Bitcoin and Exodus wallets with compromised versions, putting users' digital assets at risk. The researchers reveal that the hackers behind this malware are actively refining it, hinting at an upcoming campaign.

Trojan Proxies Emerges

In December, researchers exposed a new "family" of trojan proxies that hackers employed to compromise legitimate apps downloaded from unauthorized sources. This tactic involves cracking genuine applications, creating a significant security risk for unsuspecting users.

Unraveling the Intricacies

The malware explicitly targets macOS versions 13.6 and above. Hackers exploit an activator box to capture a user's computer security password.

According to Coin Telegraph, private keys to crypto wallets are compromised when users attempt to open wallets affected by the malware. While the methodology may appear basic, the researchers emphasize the malware's sophistication as it evolves during their investigation.

To safeguard against the unfolding malware campaign, Kaspersky recommends utilizing trusted websites, maintaining an updated operating system, and employing robust computer security solutions.

This shows that even if there are already a lot of new measures that ensure users' security in dealing with cryptocurrencies, hackers still find a way to bypass these and, in the process, create new anomalies that allow them to implement their crime on unsuspecting victims.

Rising Trends and FBI Warning

Hackers continue to employ various techniques, such as disguising malware as legitimate wallets on online stores or creating fake websites.

According to Decrypt, this tactic has become so prevalent that the United States Federal Bureau of Investigation (FBI) recently issued a warning to raise awareness about the risks associated with such activities.

In a separate incident in November, the North Korean Lazarus Group targeted macOS users in the decentralized finance community with malware distributed within Discord groups. These instances underscore the evolving landscape of cybersecurity threats and the importance of staying vigilant and adopting proactive measures to protect digital assets and personal information.

Photo by: Lucas Hoang/Unsplash

TokenPost | [email protected]

<Copyright © TokenPost. All Rights Reserved. >

Back to top
Copyright ⓒ TokenPost. All Rights Reserved.