According to PANews, the security company Mosyle has identified a malware across platforms called ModStealer, which can bypass major antivirus programs by masquerading as a background helper program. This malware specifically targets browser-based cryptocurrency wallet data on Windows, Linux, and macOS systems. It spreads through fake job advertisements and primarily targets developers with Node.js environments installed.
ModStealer is capable of executing and collecting wallet extensions, system credentials, and digital certificates automatically, then uploading the data to a remote control server (C2). Security experts warn that this malware poses a direct threat to cryptocurrency users and platforms, potentially leading to the exposure of private keys, recovery phrases, and API keys, which could result in large-scale on-chain attacks. #TrendingTopic #MarketRebound #BTC #ETH #Ethereum
