- Security researchers detect the Live Live Fake Live application for Mac users
- The application replaces the legitimate and shows a false critical error
- The error requires the user to send their 24 -words seed phrase
Cybercriminals are pointing to cryptocurrency owners with Apple Mac devices using a highly sophisticated piece of malware that hides in sight and aims to steal its seed phrases.
A ‘seed phrase’ is a combination of 12 or 24 words that allows anyone to load an existing wallet in a new device and obtain access to all funds inside.
In a new report, Moonlock security researchers said there are currently four active campaigns that distribute a false Ledger Ledger application that falsifies an official offer that allows users to send, manage and track their cryptography portfolio.
“High risk effort”
The campaign has supposedly been active since August 2024, and although the report does not discuss how victims end up downloading the Ledger Live False application, it details how it works: it replaces the existing legitimate application, and then during the login process shows a false error message.
The “critical error” can only be remedied by sending the phrase of 24 words seeds that are then immediately transmitted to the attackers.
“This is not just a robbery. It is a high -risk effort to make fun of one of the most reliable tools in the cryptographic world,” Moonlock explains. “And the thieves are not going back.”
“Users must take the news as a clear signal to stay alert,” the researchers concluded, urging users to distrust Phishing’s emails, never share their seed phrases with anyone, and just download cryptocurrency wallet applications from legitimate sources.
Cryptocurrency users continue to be an important objective for cybercriminals everywhere; In the United States, users lost around $ 9.3 billion for several scams only in 2024, Coenina That said, citing an FBI report, an increase of 66% compared to 2023.
Through Bleepingcomputer
