Hackers are increasingly targeting cryptocurrencies with more aggressive tactics. Since January, they have stolen over $1.2 billion in crypto, with many incidents linked to the DPRK. On September 3rd, the FBI issued a public service announcement warning the crypto industry about what kinds of malicious software is being used nowadays.
Warning For Android Users
McAfee, a software security firm, has detected an Android malware named SpyAgent. This malware utilizes Optical Character Recognition (OCR) to scan phone storage for images, including screenshots containing private keys. Remember, decentralized wallet providers advise against taking screenshots of your keys, instead, write them down on paper for security.
McAfee Labs notes that this malware is spread through malicious links sent via text messages. These links often lead to fake banking apps that request full access to your phone, including photos and media. If users receive a message claiming their banking app is outdated and prompting them to click a link to update, exercise caution. Clicking the link might open a website resembling an official bank website, but downloading and installing the application could expose your data to hackers.
The FBI has also warned the crypto community about highly specialized social engineering attacks. Such malware can be disguised not only as banking apps but also as government applications or games.
Malware Threats On MacOS
MacOS users might think they are immune to such threats, but that is not the case. In August, a malware called Cthulhu Stealer was discovered targeting MacOS. Like other malware, it masquerades as legitimate software. Once installed, it can steal private information, including all types of passwords and wallet credentials like MetaMask, as well as IP addresses.
In August, North Korean hackers exploited a vulnerability in Google Chrome. They created fake websites that mimicked legitimate crypto trading platforms to trick users into downloading a malicious crypto wallet or trading app.
As hackers become more focused on cryptocurrencies, these malware tactics are escalating. To protect yourself, always download applications directly via their official sources and verify website URLs. Crypto users should also avoid saving seed phrases as images or storing them on digital devices.