New Malware Targets macOS and Steals Cryptocurrency
23.08.2024 21:00 1 min. read Alexander Stefanov
According to an August 5 report from Moonlock Lab, the "Atomic macOS" (AMOS) malware is experiencing a resurgence, appearing in Google Adsense ads masquerading as legitimate macOS programs like Loom, Figma, and TunnelBlick.
These fake versions are unauthorized and are designed to install AMOS on users’ devices.
Moonlock experts discovered AMOS while investigating a fake Loom ad that redirected them to a fake website. Instead of downloading Loom, users inadvertently installed a sophisticated version of the AMOS malware.
Originally reported by Cyble in April 2023, AMOS was sold on Telegram for $1,000 per month, targeting over 50 different crypto wallets, including MetaMask, Coinbase, and Binance. The malware could steal wallet data, potentially allowing attackers to drain users’ funds.
Now, Moonlock warns that AMOS has been upgraded to replace legitimate wallet apps with clones, making it easier to delete victims’ e-wallets.
In particular, it can clone the Ledger Live software used by Ledger hardware wallets, potentially tricking users into sending cryptocurrencies to attackers. This capability is a significant advancement for AMOS.
Cryptocurrency users on macOS should be cautious when downloading software, especially from ads. To ensure authenticity, it is advisable to search for the official website of the app through organic search results rather than clicking on ads.
Malware remains a serious threat to crypto users, with AMOS being a particularly dangerous example.
-
1
North Korean Agent Exposed in Crypto Job Scam at Kraken
04.05.2025 20:00 2 min. read -
2
ZachXBT Helps Freeze $7M After $330M Bitcoin Theft From Elderly Holder
05.05.2025 16:00 1 min. read -
3
$330M Bitcoin Heist Traced to Social Engineering Scam Targeting U.S. Senior
04.05.2025 12:00 2 min. read -
4
Samourai Wallet Case Faces Scrutiny After Allegations of Withheld Evidence
07.05.2025 13:00 2 min. read -
5
Alex Mashinsky Seeks One-Year Sentence as DOJ Pushes for 20 Years
08.05.2025 12:00 1 min. read
Man Sentenced to 30 Years for Using Crypto to Fund ISIS Operations
A U.S. court has handed down a 30-year prison sentence to Mohammed Azharuddin Chhipa, who was found guilty of financing terrorism through cryptocurrency.
Celsius CEO Sentenced to 12 Years Over $5 Billion Crypto Scandal
A major chapter in crypto’s legal reckoning closed this week as Alex Mashinsky, once a prominent name in digital lending, received a 12-year prison sentence.
Alex Mashinsky Seeks One-Year Sentence as DOJ Pushes for 20 Years
Former Celsius CEO Alex Mashinsky is asking for a significantly reduced prison sentence ahead of his May 8 sentencing, with his legal team pushing back hard against the U.S. Department of Justice’s call for a 20-year term.
Samourai Wallet Case Faces Scrutiny After Allegations of Withheld Evidence
The legal battle against the creators of Samourai Wallet has taken a sharp turn, as defense attorneys accuse federal prosecutors of suppressing a key legal interpretation from the Treasury Department that could dismantle the core of the government’s case.
-
1
North Korean Agent Exposed in Crypto Job Scam at Kraken
04.05.2025 20:00 2 min. read -
2
ZachXBT Helps Freeze $7M After $330M Bitcoin Theft From Elderly Holder
05.05.2025 16:00 1 min. read -
3
$330M Bitcoin Heist Traced to Social Engineering Scam Targeting U.S. Senior
04.05.2025 12:00 2 min. read -
4
Samourai Wallet Case Faces Scrutiny After Allegations of Withheld Evidence
07.05.2025 13:00 2 min. read -
5
Alex Mashinsky Seeks One-Year Sentence as DOJ Pushes for 20 Years
08.05.2025 12:00 1 min. read