January 23, 2024 at 04:11PM
Fresh malware targeting Apple users in the US and Germany is infecting Bitcoin and Exodus cryptowallet applications through pirated software. Kaspersky researchers state that the malware can replace these applications with infected versions to steal recovery phrases and passwords, allowing attackers to control victims’ digital wallets. They advise against downloading cracked applications to reduce the risk of compromise.
From the meeting notes, it is evident that there is a growing threat of fresh malware targeting Apple users in the US and Germany, infecting Bitcoin and Exodus cryptowallet applications. This malware is delivered through pirated software and can replace legitimate applications with infected versions that steal secret recovery phrases and wallet passwords.
The attackers use DNS TXT records to deliver an encrypted Python script as the second stage of the infection. Once installed, the malware operates in the background, sending data to a command-and-control server controlled by the attackers, potentially giving them control of a victim’s digital wallet.
An important takeaway from the meeting notes is the recommendation to avoid downloading cracked or modified applications, even from well-known and trusted sources. This significantly reduces the chances of compromise. Additionally, the increasing popularity of cryptocurrencies is attracting heightened criminal activity, and malicious actors are adapting their techniques to take advantage of cryptocurrency users’ behaviors and preferences.
It is highlighted that users should be cautious, especially when storing large amounts of digital currency, and continue to take precautions to avoid falling victim to these evolving threats. It is also noted that OS-provided protections should be maintained, and users should source applications only from official app stores to minimize the risk of exposure to malware targeting cryptocurrency wallets.