BSV
$67.13
Vol 200.57m
-1.35%
BTC
$97700
Vol 114922.37m
3.69%
BCH
$482.63
Vol 2130.8m
9.24%
LTC
$89.18
Vol 1427.32m
5.24%
DOGE
$0.38
Vol 9978.98m
2.01%
Getting your Trinity Audio player ready...

Hackers are using cracked software to target macOS users, after which they break into their digital asset wallets and wipe them clean, a new report has revealed.

The report by Russian cybersecurity firm Kaspersky notes that these criminals are repackaging pre-cracked apps and embedding Trojan files that initiate the infection once installed by the unsuspecting user.

Kaspersky first discovered the new malware campaign in December, cautioning macOS users that saving a few dollars by installing cracked software could prove costly. In its latest report, the company says that the attackers have repackaged this malware and are targeting users of macOS Ventura 13.6 and later.

Once the victim downloads the illegal software, the malware launches a program named “Activator” that prompts the user to key in their computer password. Armed with administrator privileges, the malware downloads a payload and a Python script that executes any command it receives from the hackers’ servers.

The ultimate target of the script is to scan the computer for a digital asset wallet and then replace it with a mirror app downloaded from apple-analyser[.]com. In particular, the attackers targeted users of the Exodus wallet.

Following the Kaspersky report, Exodus urged its users to beware of attackers using social engineering techniques to obtain the victims’ credentials.

“The internet is dark and full of terrors. Scammers are always looking for their next victim. In the world of crypto, as in life, if it sounds too good to be true, it probably is,” the wallet stated.

Kaspersky urged macOS users to only download legitimate applications from trusted websites and keep their operating systems up to date to ward off such attacks.

“Users should be extra cautious, especially with their cryptocurrency wallets. Avoid downloading from suspicious sites and use trusted cybersecurity solutions for better protection,” advises Kaspersky security researcher Sergey Puzan.

Digital asset owners continue to be one of the most targeted groups by cybercriminals. According to Scam Sniffer, a real-time Web3 scam updates platform, one phishing campaign siphoned over $80 million from over 100,000 victims over the past year.

Watch: Cybersecurity fundamentals in today’s digital age with AI & Web3

Recommended for you

Blockchain enables autonomous AI agents to learn
Utilizing blockchain tech, a group of Belgian scientists enabled autonomous AI agents to learn and communicate securely, contributing to the...
September 17, 2024
WhatsOnChain gets own UTXO endpoints for BSV blockchain services
With ElectrumX set to retire in October, WhatsOnChain is gearing up to implement a new UTXO set of API endpoints,...
September 16, 2024
Advertisement