New Android Malware Exploits Screenshots to Steal Private Keys
07.09.2024 23:00 2 min. read Alexander Stefanov
McAfee has discovered a new Android malware called SpyAgent that can steal private keys stored in screenshots and photos on smartphones.
The software uses Optical Character Recognition (OCR) technology to scan and extract text from images, a feature that is commonly used across many platforms, including desktops.
McAfee Labs outlined how SpyAgent spreads through malicious links sent via text messages. Once the user clicks on the link, they are redirected to a fake but convincing website that prompts them to download a seemingly legitimate application. However, the app in question contains software that compromises the user’s phone upon installation.
The malware, masquerading as banking apps, government services and streaming platforms, requests permissions for contacts, messages and local storage. McAfee has detected SpyAgent in more than 280 apps targeting mostly South Korean users.
In August, a similar threat called “Cthulhu Stealer” was identified affecting macOS. Like SpyAgent, it masquerades as legitimate software and steals sensitive information such as MetaMask passwords and private keys for cold storage wallets.
Around the same time, Microsoft discovered a vulnerability in Google Chrome that is likely being exploited by a North Korean hacking group known as Citrine Sleet. This group creates fake crypto exchanges to lure victims with fake job applications that install malware to steal private keys. Although the Chrome vulnerability has been patched, the rise in the number of such attacks has prompted the FBI to issue a warning about Citrine Sleet’s activities.
-
1
US Treasury Sanctions Iran-Backed Rebel Network Over Crypto Transactions and Arms Supply
05.04.2025 15:00 2 min. read -
2
Bloomberg Strategist Predicts Bitcoin Crash to $10,000
07.04.2025 15:30 1 min. read -
3
American Woman Loses Millions in Sophisticated Crypto Scam
04.04.2025 18:00 2 min. read -
4
Australia Cracks Down on Almost 100 Crypto Companies Linked to Fraudulent Scams
09.04.2025 20:00 2 min. read -
5
$20 Million AI Scam Uncovered in Spain: Criminal Network Exposed
09.04.2025 14:00 2 min. read
Hacker Returns $7.5M in KiloEx Breach After Bounty Deal
A decentralized exchange targeted in a multi-million-dollar exploit has recovered its losses just days after the incident, thanks to an unexpected twist involving the hacker themselves.
Hackers Target UK Official’s Account in Crypto Scam Disguised as Government Project
A recent cyberattack targeting a UK government official’s social media account has highlighted ongoing concerns over digital impersonation and crypto scams.
NFT Trader Faces Prison for Hiding Millions in CryptoPunk Profits from IRS
A former NFT trader is facing potential prison time after admitting to hiding millions in profits from the IRS through undeclared sales of high-value digital assets.
Crypto Wallets Targeted by Sophisticated Malware Campaign
Cybersecurity researchers are sounding the alarm after discovering a new and increasingly sophisticated attack targeting the crypto community.
-
1
US Treasury Sanctions Iran-Backed Rebel Network Over Crypto Transactions and Arms Supply
05.04.2025 15:00 2 min. read -
2
Bloomberg Strategist Predicts Bitcoin Crash to $10,000
07.04.2025 15:30 1 min. read -
3
American Woman Loses Millions in Sophisticated Crypto Scam
04.04.2025 18:00 2 min. read -
4
Australia Cracks Down on Almost 100 Crypto Companies Linked to Fraudulent Scams
09.04.2025 20:00 2 min. read -
5
$20 Million AI Scam Uncovered in Spain: Criminal Network Exposed
09.04.2025 14:00 2 min. read
