ALERT: Crypto Wallets Emptied as Fake TradingView Premium Apps Spread Malware Through Reddit

  • Malware-infected “cracked” versions of TradingView Premium are being distributed on Reddit cryptocurrency forums.
  • The malware variants (Lumma Stealer for Windows and AMOS for Mac) steal crypto wallet credentials, passwords, and 2FA information.
  • Scammers actively engage with potential victims, even providing instructions to bypass Mac security measures.

Cryptocurrency users are being targeted by sophisticated malware disguised as free “cracked” versions of TradingView Premium, resulting in complete wallet drains and identity theft. The malicious software, being distributed primarily through Reddit cryptocurrency communities, contains data-stealing payloads that capture sensitive wallet information and authentication credentials.

- Advertisement -

Security researchers at Malwarebytes have identified two distinct malware variants deployed in this campaign: Lumma Stealer targeting Windows users and Atomic Stealer (AMOS) focusing on Mac systems. Both variants are specifically designed to exfiltrate cryptocurrency credentials and bypass security measures.

“What’s interesting with this particular scheme is how involved the original poster is,” noted Jérôme Segura, a senior security researcher at Malwarebytes, in a blog post analyzing the attack.

The operation demonstrates unusual persistence, with attackers actively engaging potential victims through Reddit comments. These bad actors pose as helpful community members, providing step-by-step instructions to circumvent critical security protections. In one documented case, a scammer advised a user: “That ‘Apple could not verify’ warning is just Apple being extra cautious… Don’t worry, though – a real virus on a Mac would be wild, and I’ve never seen one sneak through like that!”

Technical analysis of the AMOS malware shows it transmits stolen data to servers based in the Seychelles. The information captured includes passwords, two-factor authentication codes, and cryptocurrency wallet credentials. The Lumma Stealer variant, which has been active since 2022, specifically targets cryptocurrency wallets and browser extensions used for two-factor authentication.

The attack doesn’t en

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -

Latest News

Nasdaq Integrates Canton Blockchain for 24/7 Collateral Management

Nasdaq has integrated blockchain technology from the Canton Network into its Calypso platform to...

Pepe Meme Coin Drops 4.7% as Investor Interest Fades Further

Pepe meme coin dropped 4.7% in value over the past 24 hours, trading at...

WhatsApp Rolls Out AI Message Summaries with Advanced Privacy

WhatsApp introduces an AI-driven feature to summarize unread messages for users. The feature, called Message...

Opyl Turns to Bitcoin Treasury as Cash Crisis Deepens

Opyl Limited, an Australian biotech company, bought around 2 Bitcoin as part of a...

Theta Network Launches EdgeCloud Beta, Unveils Hybrid GPU Platform

THETA Network is launching the beta version of EdgeCloud’s hybrid edge-cloud computing platform on...

Must Read

How to Check The Rarity of An NFT

Whenever you invest in an NFT collection, you might have noticed that some NFTs are more expensive than others. NFT collections are often made...