Another Stealing Tactic?
Scammers are distributing malware-infected cracked software through Reddit to steal crypto assets, using tactics like social engineering and security bypass methods.
Malware-Infested Cracked Software
Scammers are distributing malware-infected cracked versions of TradingView Premium via Reddit, targeting cryptocurrency users.
Victims who download the software have their crypto wallets drained. Scammers then impersonate them to spread phishing links.
How Does It Work?
- Distribution of Fake Software
- Scammers upload malware-infected “cracked” versions of TradingView Premium to Reddit and cryptocurrency forums, luring users with free access to premium features.
- Installation and Infection
- Once downloaded on Mac or Windows, the software deploys Lumma Stealer (Windows) or Atomic Stealer (AMOS) (Mac) to steal passwords, 2FA data, and crypto wallet credentials.
- Wallet Drain and Impersonation
- The malware extracts stored credentials, allowing scammers to empty victims’ crypto wallets. They then impersonate victims to spread phishing links to their contacts.
- Bypassing Security
- On Macs, scammers trick users into disabling security features by posing as customer support, providing misleading instructions to bypass verification warnings.
- In a report, it highlighted that an attacker posted on Reddit, claiming that the “Apple could not verify” warning was just an overly cautious security measure. They stated users that Mac viruses were rare and unlikely to bypass protections, then provided step-by-step instructions on how to override the system’s security and install the malware.
Similar case
In March 2024, a Portuguese web3 enthusiast lost his entire $20,000 crypto savings to a cracked software scam. Despite previous security precautions after an $8,500 hack, he unknowingly installed malware while using a pirated version of Aseprite. The malware drained his wallets, leaving only low-value NFTs. He emphasized the importance of hardware wallets and avoiding unverified downloads to protect digital assets.
Further reading: Social Engineering Attacks in Crypto: How to Identify, Prevent, and Protect Your Assets
What is a malware?
Malicious software or Malware is any software designed to harm, exploit, or gain unauthorized access to devices, networks, or data. It includes viruses, worms, Trojans, ransomware, spyware, and other malicious programs that can steal personal information, disrupt systems, or take control of a device without the user’s consent.
Recently, Binance issued a warning about an increase in Clipper malware attacks, which manipulate copied cryptocurrency wallet addresses to steal funds during transactions.
Expand your knowledge on safeguarding your assets by exploring these BitPinas articles:
This article is published on BitPinas: Scammers Use Cracked TradingView Software to Steal Crypto
What else is happening in Crypto Philippines and beyond?
