Cybercriminals have developed a new scheme targeting crypto traders by spreading malicious software disguised as a 'hacked' version of TradingView Premium. According to Malwarebytes, scammers are actively promoting fake installation files for Windows, macOS, and Android through cryptocurrency threads on Reddit and phishing emails. Once the malware is installed, programs like Lumma Stealer and Atomic Stealer steal data from crypto wallets, passwords, and two-factor authentication keys. On Android devices, the stealer Brokewell, disguised as the update tw-update.apk, gains access to accessibility features, allowing complete control of the device.
Attackers use fake accounts to create an illusion of trustworthiness by actively engaging in discussions and 'assisting' with installations. Phishing sites that imitate the official TradingView deceive users by offering to download infected files. Experts from Bitdefender and Microsoft Incident Response warn about the risks of trojans targeting over 20 cryptocurrency wallet extensions, including MetaMask and Trust Wallet. Users are advised to download software only from the official TradingView website and to check the URL before installation.
To protect your assets, avoid suspicious links and unofficial sources. Stay updated with cybersecurity news and subscribe to #MiningUpdates
#CyberSecurity #Cryptoscam #tradingview #Malware #CryptoSecurity #MiningUpdates