Mac Users: AMOS Malware Steals Crypto

This dangerous malware, initially reported by cybersecurity firm Cyble in April 2023, has resurfaced with new capabilities.

It can now clone wallet apps such as Ledger Live, and other wallet applications may soon be at risk. Let’s discover more about AMOS Malware.
AMOS Malware Targets Crypto Wallets

Cybersecurity firm Moonlock Lab recently reported that AMOS is experiencing a resurgence. It is being actively advertised through Google AdSense, disguising itself as a popular MacOS program. Unauthorized ads falsely promoted apps like Loom and Figma. They were designed to mislead users into downloading the malware. They also misrepresented the VPN Tunnelblick and the messaging app Callzy.

When users clicked on these ads, they were redirected to a website, smokecoffeeshop.com. This can lead them to fake versions of the advertised apps. The fake websites closely mimicked the originals, making the scam hard to detect.

Source: X

In one instance, Moonlock researchers encountered a fake version of Loom. When they attempted to download the program by clicking the “Get Loom for free” button, they instead downloaded a sophisticated version of the AMOS malware. This malware is capable of cloning the Ledger Live software, a widely-used crypto wallet management tool, and potentially other wallet apps in the future.

More About AMOS Malware

AMOS is not just a new threat; it has a track record of targeting over 50 different cryptocurrency wallets, including popular options like Electrum, MetaMask, Coinbase, Binance, Exodus, Atomic, and Coinomi. Once installed on a user’s Mac, AMOS scans for these wallets and steals critical data, such as the encrypted keyvault files, which are essential for accessing and managing cryptocurrencies. This data theft can lead to the complete loss of a user’s digital assets.

Source: X

Initially sold on Telegram for $1,000 per month as a subscription service, AMOS provides cyber criminals with a powerful tool to exploit unsuspecting Mac users. The recent developments underscore the need for heightened vigilance and security among cryptocurrency holders, particularly those using MacOS. Users are advised to download software only from official websites and remain cautious of ads and links that could redirect them to malicious sites.

Injective

Disclaimer

The information discussed by Altcoin Buzz is not financial advice. This is for educational, entertainment, and informational purposes only. Any information or strategies are thoughts and opinions relevant to the accepted risk tolerance levels of the writer/reviewers and their risk tolerance may be different than yours. We are not responsible for any losses you may incur due to any investments directly or indirectly related to the information provided. Bitcoin and other cryptocurrencies are high-risk investments so please do your due diligence. Copyright Altcoin Buzz Pte Ltd.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.