Reserved IP Address°C
03-31-2025
BSV
$31.76
Vol 23.15m
-1.12%
BTC
$82802
Vol 28505.89m
0.32%
BCH
$303.8
Vol 193.75m
0.34%
LTC
$83.83
Vol 450.73m
-2.99%
DOGE
$0.16
Vol 1453.24m
-1.87%
Getting your Trinity Audio player ready...

Hackers are using cracked software to target macOS users, after which they break into their digital asset wallets and wipe them clean, a new report has revealed.

The report by Russian cybersecurity firm Kaspersky notes that these criminals are repackaging pre-cracked apps and embedding Trojan files that initiate the infection once installed by the unsuspecting user.

Kaspersky first discovered the new malware campaign in December, cautioning macOS users that saving a few dollars by installing cracked software could prove costly. In its latest report, the company says that the attackers have repackaged this malware and are targeting users of macOS Ventura 13.6 and later.

Once the victim downloads the illegal software, the malware launches a program named “Activator” that prompts the user to key in their computer password. Armed with administrator privileges, the malware downloads a payload and a Python script that executes any command it receives from the hackers’ servers.

The ultimate target of the script is to scan the computer for a digital asset wallet and then replace it with a mirror app downloaded from apple-analyser[.]com. In particular, the attackers targeted users of the Exodus wallet.

Following the Kaspersky report, Exodus urged its users to beware of attackers using social engineering techniques to obtain the victims’ credentials.

“The internet is dark and full of terrors. Scammers are always looking for their next victim. In the world of crypto, as in life, if it sounds too good to be true, it probably is,” the wallet stated.

Kaspersky urged macOS users to only download legitimate applications from trusted websites and keep their operating systems up to date to ward off such attacks.

“Users should be extra cautious, especially with their cryptocurrency wallets. Avoid downloading from suspicious sites and use trusted cybersecurity solutions for better protection,” advises Kaspersky security researcher Sergey Puzan.

Digital asset owners continue to be one of the most targeted groups by cybercriminals. According to Scam Sniffer, a real-time Web3 scam updates platform, one phishing campaign siphoned over $80 million from over 100,000 victims over the past year.

Watch: Cybersecurity fundamentals in today’s digital age with AI & Web3

Recommended for you

Developers in Japan can now get hands-on with BSV’s Python SDK
BSV Blockchain Ambassador and YenPoint CEO Ken Sato is co-presenting a session on BSV's Python SDK at Tohoku University on...
March 20, 2025
Babbage set to release new software stack for BSV Hackathon
Blockchain app building just gets more exciting as Babbage announces the upcoming release of its updated Web3 toolbox for the...
March 18, 2025
Advertisement
Advertisement
Advertisement