News

New Malware Targets macOS Users Through Pirated Apps, Puts Crypto Wallets at Risk

Security researchers at Kaspersky Labs have identified previously undisclosed malware that poses a significant threat to macOS users. The malware infiltrates users’ computers through pirated software and carries out a particularly devious attack—replacing legitimate cryptocurrency wallets with infected versions. Researchers have determined that the hackers behind this malware are actively developing it, preparing for an upcoming campaign.

In December, researchers stumbled upon a new “family” of trojan proxies used by hackers. These cybercriminals were exploiting legitimate apps downloaded from unauthorized sources, simultaneously infecting them with the malware in question.

The malware specifically targets macOS versions 13.6 and above. The attack methodology involves capturing the user’s computer security password as it is entered into an activator box. Additionally, the malware gains access to the private keys of cryptocurrency wallets when users attempt to open the compromised wallets manipulated by the malware.

While the attack method may appear basic, the researchers describe the malware itself as “seriously ingenious.” As the researchers tracked its development, they observed its sophistication and evolving capabilities.

Kaspersky emphasized that users can protect themselves from falling victim to this unfolding malware campaign by adhering to several security measures:

  1. Use Trusted Websites: Only download software and applications from reputable and trusted sources.
  2. Keep OS Updated: Regularly update the computer’s operating system to patch known vulnerabilities.
  3. Implement Security Solutions: Utilize a reliable security solution on the computer to provide an additional layer of protection.

Hackers employ various tactics to distribute malware, including disguising it as a legitimate wallet on online stores or creating fake websites. Such activities have become alarmingly common, leading the United States Federal Bureau of Investigation (FBI) to issue warnings about these threats.

This new malware discovery adds to the growing list of cybersecurity concerns for macOS users. In November, the North Korean Lazarus Group targeted macOS users in the decentralized finance community with malware that circulated within Discord groups. As cyber threats continue to evolve, staying vigilant and adopting robust security practices are essential for safeguarding sensitive data and digital assets.

Leave a Reply

Your email address will not be published. Required fields are marked *