Attention Bitcoin and Exodus wallet users! A new cybersecurity threat has emerged, prompting a warning from Kaspersky, a renowned cybersecurity firm. This alarming development revolves around a verified macOS exploit specifically targeting the latest version of Apple’s operating system. Unlike the common perception that Apple users are less susceptible to malware, this revelation challenges that notion.
The macOS malware identified by Kaspersky operates discreetly, primarily through pirated applications, aiming to illicitly access cryptocurrency stored in the digital wallets of macOS users. Unlike previous instances of proxy trojans, this new threat distinguishes itself by focusing on compromising wallet applications.
What makes this crypto Trojan unique is its utilization of DNS records to deliver a malicious Python script. Additionally, instead of merely stealing Bitcoin wallets, it goes a step further by replacing a wallet application with its infected version. This tactic enables it to pilfer the secret phrase used to access the cryptocurrency stored in the wallets.
The malware is designed to target macOS versions 13.6 and above, indicating a specific focus on users of newer operating systems, whether on Intel or Apple Silicon Devices.
Sergey Puzan, a security researcher at Kaspersky, highlighted the seriousness of the situation, emphasizing that cybercriminals leverage pirated apps as a means to gain easy access to users’ computers and acquire admin privileges by tricking them into entering passwords.
Puzan also noted the malware creators’ creativity in concealing a Python script within a DNS server’s record, enhancing the malware’s stealth within network traffic. Users are urged to exercise extra caution, particularly with their Bitcoin wallets, and to avoid downloading from suspicious sites.
Bitcoin Wallet Security: Must-Know Measures for Users
To safeguard against such Trojans and secure crypto assets, Kaspersky researchers recommend the following measures:
- Download apps exclusively from official stores, such as the Apple App Store.
- Utilize trusted security solutions and adhere to their recommendations.
- Keep operating systems and essential apps updated as updates become available.
This recent revelation echoes a prior incident in September 2023, where Russian Stealer Malware, known as “Chisel,” was discovered orchestrating relentless attacks on cryptocurrency wallets and exchange applications. This discovery resulted from a collaborative effort involving the FBI, NSA, CISA, the UK’s NCSC, and other prominent entities, underscoring the ongoing and evolving nature of cyber threats in the crypto space.