- Cybersecurity firm Kaspersky has unearthed a new malware targeting cryptocurrency wallets on macOS computers
- The wallet swaps installed wallet with a compromised version of the wallet
- The malicious actors hide the malware in pirated softwares
Cybersecurity firm Kaspersky has discovered a new way that malicious actors are using to steal cryptocurrencies stored in non-custodial wallets. According to the firm’s research, hackers are using malware to infiltrate crypto wallets on macOS-based devices, with pirated software being their preferred way of spreading it. Once installed, the malware swaps a genuine wallet with a compromised version, giving hackers easy and unlimited access to stored assets.
MacOS Users Willing to Disable Security
Kaspersky noted that malicious actors are preying on macOS users using alternate ways to download software which is normally offered at a fee. According to the cybersecurity firm, such individuals are willing to “disable security on their machine,” thus paving the way for questionable applications.
The cybersecurity firm said that the malware tricks macOS users to give their computer’s login details under the pretense of “activating” the pirated software during installation. Once installed, the malicious actors gain access to wallet private keys when accessing the compromised wallet version.
Although the firm noted that the malware seemed to still be under development, it observed that it is capable of running “any scripts with administrator privileges.”
The Internet is Full of Terror
Kaspersky also revealed that the malware mainly targets “Exodus and Bitcoin cryptowallet applications” on masOS-based computers. However, the cybersecurity company observed that macOS users can avoid falling into this trap by keeping their operating system up to date and downloading software from trusted sources.
Malware targeting crypto wallets isn’t a new occurrence. Microsoft, for example, has in the past identified a type of malware that collects and sends data “directly from non-custodial cryptocurrency wallets.”
In a recent post, crypto wallet Exodus noted that “the internet is dark and full of terror […] scammers are always looking for their next victim.”
Hey, all! We want to talk about some scams that have been on the rise recently, how to recognize them, and what to do if you’re targeted.
Social engineering is the new hotness in the world of scams. An attacker may approach the victim, build trust with them, and offer a trade or…
— Exodus – Crypto Wallet (@exodus_io) January 22, 2024
With the macOS malware discovered, it’s likely that the number of victims will be reduced.