The malware targets macOS version 13.6 and higher, regardless of whether they run on Intel or Apple Silicon devices.
Apple users are being urged to remain vigilant as cybersecurity firm Kaspersky has reported a verified macOS vulnerability against the latest operating system version.
The vulnerability is designed to trick Bitcoin and Exodus wallet users into inadvertently downloading fraudulent versions of the software.
Cryptocurrency-stealing malware targets macOS users
Kaspersky mentioned that the malware is distributed through pirated apps and is unique in that it focuses on corrupting wallet apps. Unlike typical proxy Trojans or remote control software, the malware has two features.Antminer Miner
First, it utilizes DNS records to deliver malicious Python scripts. Second, it doesn’t just steal crypto wallets, but replaces the wallet application with an infected version. This allows the malware to steal secret phrases to access cryptocurrencies stored in the infected wallet.
The malware specifically targets macOS versions 13.6 and higher, regardless of whether they run on Intel or Apple Silicon devices. Kaspersky emphasized the attackers’ unique creativity in hiding Python scripts in DNS server records, which enhances the malware’s stealth in network traffic.
Sergey Puzan, Kaspersky security researcher, advises users with cryptocurrency wallets to be extra careful. Kaspersky advises users to take precautions such as updating their computer’s operating system, installing anti-malware software, and downloading apps only from official stores such as the Apple App Store to protect digital investments.
While these measures enhance security, it’s worth noting that even hardware wallets are not foolproof. In another incident, 16.8 bitcoins (about $587,238) were stolen in November after downloading a fake Ledger cryptocurrency wallet management app from the Microsoft App Store.
Crypto Wallets Under Threat
Malware targeting crypto wallets continues to pose a threat, with recent incidents highlighting user vulnerability and potential financial losses. Since November, more than $4 million has been stolen from scams and fake airdrops on the Solana network.MicroBT Miner
Additionally, hackers with ties to North Korea’s Lazarus organization have reportedly stolen more than $35 million from Atomic Wallet users in a variety of cryptocurrencies, including USDT, XRP, Cardano, and Dogecoin. Meanwhile, Kaspersky’s report raises concerns, especially for wallet providers such as Exodus, Coinbase and MetaMask, which have all been targeted by hackers in the past.
Exodus Wallet CEO JP Richardson emphasized the company’s commitment to customer security, conducting comprehensive code audits to identify and mitigate potential threats. Despite these efforts, Richardson recommends that users consider using a hardware wallet for an extra layer of security.
WeChat
Scan the QR Code with wechat