The exploit is prominently used to target Exodus and Bitcoin wallets.
Anuj Mudaliar Assistant Editor - Tech, SWZD
January 24, 2024
- Kaspersky Labs has discovered a new malware that exploits a vulnerability in macOS systems to replace Exodus and Bitcoin wallets with infected versions.
- Hackers can access security credentials for crypto wallets during the login process, compromising security.
Cybersecurity firm Kaspersky Labs has warned macOS users about malware that exploits vulnerabilities in macOS to target popular cryptocurrency wallets (Exodus and Bitcoin). The exploit works to trick Mac users into downloading a fake, malicious version of the wallet software.
Kaspersky researchers discovered a group of trojans in December 2023 that were used to crack apps downloaded from unauthorized sources. Such installations usually require deactivating security features, making devices and apps susceptible to malicious activity. The malware targets the version of macOS 13.6 and later.
See More: Apple Patches Critical Zero-Day Vulnerability for Macs and iPhones
Hackers leveraging the malware can access security credentials, including passwords and private keys, during the login process and when opening crypto wallets. In addition, Kaspersky has also stated that the malware also sets up backdoors that allow the execution of scripts that allow administrator privileges.
The threat has also caused the FBI to issue a warning about the problem of malware being disguised as legitimate wallet software. The threat highlights the growing risks being faced by cryptocurrency users. The impact of malicious packages can be mitigated using best practices, including avoiding unauthorized websites, using updated security solutions, and keeping operating systems up to date.
What best practices do you follow to protect your crypto wallets? Let us know your thoughts on LinkedInOpens a new window , XOpens a new window , or FacebookOpens a new window . We’d love to hear from you!
Image source: Shutterstock
LATEST NEWS STORIES
Assistant Editor - Tech, SWZD
Anuj Mudaliar is a content development professional with a keen interest in emerging technologies, particularly advances in AI. As a tech editor for Spiceworks, Anuj covers many topics, including cloud, cybersecurity, emerging tech innovation, AI, and hardware. When not at work, he spends his time outdoors - trekking, camping, and stargazing. He is also interested in cooking and experiencing cuisine from around the world.