Sources
Loading...
Additional media
Loading...
DeepNewz, mobile.
People-sourced. AI-powered. Unbiased News.
Researchers have identified a malicious Python package masquerading as a cryptocurrency trading tool, which has been downloaded over 1,300 times before its removal. This malware, named 'CryptoAITools', targets both Windows and macOS systems and is capable of draining cryptocurrency wallets. It infiltrates users' devices through platforms such as GitHub and PyPi, employing a multi-stage infection chain. The malware presents itself with a polished graphical user interface, which may distract users from its malicious intent. Additionally, researchers have warned that using Google Tag Manager in web wallets or decentralized applications could expose users' funds to significant risks, as attackers could exploit this access for blind-signing attacks.
Crypto Malware’s New Trick: Fake AI Bot Draining Wallets CryptoAITools, the latest malware targeting the scene, cloaks itself as a Python-based “AI trading tool” and hits both Mac and Windows hard. It’s sneaking in through GitHub and PyPi with a polished GUI, distracting users… https://t.co/HYx4WSY5WC
"AI" Trading Bot Drains Wallets in Style The newly discovered 'CryptoAITools' malware’s has some serious bite, creeping in through GitHub and PyPi posing as the next-gen Python trading bot. The malware rides on a multi-stage infection chain that hits both Mac and Windows, even… https://t.co/1HKhbR0tYF
⚠️Using Google Tag Manager (GTM) in web wallets or dApps can put users' funds at serious risk. Even teams with strong DevOps practices may share GTM access with marketers or third-party agencies. With GTM’s custom JavaScript, attackers could launch blind-signing attacks: https://t.co/iRhQG0ZxAL https://t.co/Y4PId3rNYU
