A New Info Stealer Targets Crypto Wallets and Messaging Apps
A new strain of malware known as Phemedrone Stealer is specifically targeting crypto wallets and messaging apps, according to cybersecurity experts. The malware exploits a previously unknown security flaw in Microsoft Windows, allowing it to extract data from web browsers, crypto wallets, and messaging apps like Telegram, Steam, and Discord. In addition to stealing data, Phemedrone Stealer also captures screenshots and collects system information such as hardware details, location, and operating systems.
The stolen data is then transmitted to the attackers through Telegram or a command-and-control server. The vulnerability arises from a lack of checks on Microsoft Defender and prompts on Internet Shortcut (.url) files. Threat actors take advantage of this vulnerability by creating .url files that download and execute malicious scripts, bypassing Windows Defender SmartScreen warnings.
Despite a patch being available, cybersecurity firm Trend Micro has observed an increasing number of malware campaigns incorporating this security gap into their attack chains. The extent of stolen crypto or private data due to Phemedrone Stealer is currently unknown.
The Year 2023: Cybersecurity Incidents and Recovered Funds
According to De.Fi’s REKT database, there were 455 cybersecurity incidents in 2023, with the largest hack amounting to $231 million attributed to Multichain. However, the collective efforts of cybersecurity experts and white hat hackers led to the recovery of approximately $200 million from the total sum.
Hot Take: Protect Your Crypto Assets from Phemedrone Stealer
As an active participant in the crypto space, it is crucial for you to protect your assets from threats like Phemedrone Stealer. Ensure that you have installed the latest security patches for your operating system and keep your antivirus software up to date. Be cautious when downloading files and avoid clicking on suspicious links. Additionally, consider using hardware wallets to store your crypto assets securely. By taking these precautions, you can minimize the risk of falling victim to malware attacks and safeguard your valuable cryptocurrencies.