New Cryptocurrency-Theft Malware: The Danger Is Growing
Date: 2024-12-10 Author: Oliver Abernathy Categories: CRYPTO PAYMENTS
Cybercriminals are rapidly improving their methods, using artificial intelligence to develop fake web resources, including websites, blogs, and social media accounts. They disguise themselves as well-known companies to convince users to download a fake video conferencing app, according to experts from Cado Security Labs.
One such app is Meetio, previously known as Meeten, Clusee.com, Cuesee, Meeten.gg, Meeten.us, and Meetone.gg. By downloading this app, victims are exposed to theft of login data for Telegram and other services, as well as bank card information.
The malware actively searches for cookies, autofill data from Google Chrome and Microsoft Edge browsers, as well as access to cryptocurrency wallets, including Ledger, Trezor, Phantom, and Binance. Hackers are creating versions of the program for both macOS and Windows. According to Cado Security, this fraudulent scheme has been around for about four months.
One of the features of the attacks is the use of social engineering. For example, one victim reported that the attackers contacted him on behalf of a friend via Telegram, offering to discuss investments. It later turned out that this was an impostor. In addition, many users encountered fake "employers" who offered vacancies and convinced them to download malware. As a result, the victims discovered that their cryptocurrency funds had been stolen.
Cyber expert Tara Gould emphasized that the number of such cases is growing, and fraudsters are becoming more inventive. She recalled that similar threats have already occurred before. For example, last year, SlowMist warned about a malicious application in the AppStore, which also stole user data and cryptocurrency.
Experts strongly recommend that users be careful and carefully check the authenticity of resources and applications, especially if they are related to financial information.
