Kaspersky Labs Uncovers Sophisticated Malware Targeting macOS Crypto Wallets
Summary:
Cybersecurity firm Kaspersky Labs has discovered a sophisticated new malware targeting macOS users. The malicious program infiltrates systems via pirated applications, replacing Bitcoin and Exodus wallets with tainted versions. The malware, targeting macOS versions 13.6 and higher, steals users' computer security passwords and private keys when they interact with the compromised wallets. The hackers are continuously developing the malware for a future campaign. To mitigate the threat, Kaspersky advises using trusted websites, keeping systems updated, and using reliable security solutions.
Cybersecurity organization Kaspersky Labs discovered an unknown malicious program that infiltrates the computers of macOS users via pirated applications and replaces their Bitcoin and Exodus wallets with tainted versions. The hackers are continuously developing this malware to carry out a future campaign, as per the findings.
In December, researchers unearthed a new breed of Trojan proxies. Unscrupulous individuals were corrupting legitimate applications, leading users to unintentionally download the malware from unauthorized sources. Cybercriminals are aware that those seeking cracked applications are more likely to download installers from unreliable websites and deactivate their machine's security measures, making them an easy target for malware installation.
The infectious software targets macOS versions 13.6 and higher. Hackers can access the user's computer security password via an activator box, and steal the private keys to cryptocurrency wallets by compromising the wallets with malware.
Even as researchers were tracing its development, the malware's code continued to be written. The researchers noted that, despite being rudimentary, the malware's level of sophistication is significant. The end result was a backdoor that could execute any script with administrator privileges, replacing Bitcoin and Exodus crypto wallet applications with infected versions that stole secret recovery phrases at the moment the wallet was unlocked.
Kaspersky Labs advised users to avoid the imminent malware threat by patronizing trusted websites, maintaining up-to-date operating systems, and implementing a reliable security solution.
The hacking landscape is riddled with multiple tactics, such as misleading users into downloading malware disguised as authentic wallets from online stores or counterfeit websites. This deceptive practice is prevalent to the point where the U.S. Federal Bureau of Investigation issued a warning about it.
In a related development, the North Korean hacking group Lazarus developed malware in November targeting the macOS users in the decentralized finance sector, spreading it through Discord groups.
Published At
1/23/2024 12:32:18 AM
Disclaimer: Algoine does not endorse any content or product on this page. Readers should conduct their own research before taking any actions related to the asset, company, or any information in this article and assume full responsibility for their decisions. This article should not be considered as investment advice. Our news is prepared with AI support.
Do you suspect this content may be misleading, incomplete, or inappropriate in any way, requiring modification or removal?
We appreciate your report.