A new threat has emerged for cryptocurrency users as hackers are now targeting them through popular instant messaging apps like Telegram and WhatsApp.
ESET, a cybersecurity research company, recently discovered dozens of trojanized versions of these apps designed to steal victims’ cryptocurrencies. Clippers, a type of malware that either steals or modifies clipboard contents, have been identified as the focus of copycat websites that target Android and Windows users.
It is concerning that clippers have been detected integrated into instant messaging applications, a new area for cybercriminals to exploit as the number of cryptocurrency users increases. Some malevolent applications have integrated optical character recognition (OCR) technology to extract text from saved screenshots on compromised devices, which is a feature that was not present in previous Android malware.
The primary objective of these clippers is to intercept victims’ messaging interactions and substitute any transmitted or received cryptocurrency wallet addresses with those controlled by the attackers. This allows cybercriminals to pilfer funds from unsuspecting users who rely on the trojanized apps for conducting cryptocurrency transactions.
Remaining cautious and exclusively downloading applications from reputable sources is essential for individuals using cryptocurrencies. ESET advises utilizing security software on all devices, regularly updating them, and refraining from clicking on dubious links or attachments. As cryptocurrencies become more widespread, it is vital for users to be knowledgeable about these risks and to implement appropriate measures to safeguard their digital assets.