The FBI has issued a warning on SpyAgent, a new and advanced Android virus that was found by McAfee. Its purpose is to steal private keys for bitcoin from customers' handsets.

SpyAgent aims to steal private keys by scanning and extracting text from photos and screenshots saved on the device using optical character recognition (OCR) technology.

According to McAfee's research, malicious URLs transmitted via text messages are the primary vector for spreading SpyAgent.

Malware Pretending to Be Different Programs
Users are tricked into downloading a software that seems like a trustworthy tool when they click on these links. The websites that reroute them appear respectable.

The SpyAgent spyware, which infiltrates the phone's security once loaded, is really this app.

Malware sometimes takes the appearance of seemingly legitimate programs, such as those for banking, government, and streaming services.

It asks for access to your contacts, messages, and local storage when you install it, so it may steal your personal information.

According to McAfee, more than 280 malicious applications have been found to include SpyAgent, which is mostly aimed against consumers in South Korea.

Following the detection of yet another malware threat in August, this warning has been issued.

Passwords for MetaMask, IP addresses, and private keys to cold wallets are among the personal details targeted by the "Cthulhu Stealer," an infection that infects MacOS computers and similarly masquerades as legal software.

The same month that North Korean hacking outfit Citrine Sleet used a Google Chrome vulnerability that Microsoft found, they used it to establish phony cryptocurrency exchanges and bogus job applications.

Malware that stole private keys and could be managed remotely was installed as a result of these actions.

An official warning on North Korean hacking efforts was issued by the FBI due to the increase in these sorts of assaults; however, the vulnerability in Chrome has already been addressed.

To safeguard their digital assets from such advanced attacks, users should be cautious and not download programs or click on links from unfamiliar sources.

Scams Cost Crypto Projects $310M in August
The second-highest monthly total this year was $310 million, lost in August due to different vulnerabilities, representing a spike in crypto-related frauds.

The total loss came to $300.6 million, albeit $10.3 million of the stolen goods were recouped or returned in the end.

Of all the losses, over $293 million were caused by phishing attempts, making them the most destructive.

Two massive phishing assaults stole $238 million worth of Bitcoin and $55 million worth of DAI stablecoin.

In addition to phishing, August saw assaults on other cryptocurrency projects, resulting in significant losses.

One example is the theft of 4,040 ETH, or $9.85 million at the time, from the Ronin Network on August 6th. The network is an Ethereum Virtual Machine (EVM) sidechain.

Also, compared to prior months, August's losses of $1.2 million were reduced due to flash loan assaults, which is still a cause for worry.

Despite an uptick in phishing and other exploitative tactics, exit scam losses dropped sharply to $800,000 in August from over $3 million in July.
#FBI #Hack #ETH

1. Crypto Twitter Under Siege:
- CoinGecko and SEC's Twitter accounts hacked in a week, exposing a concerning trend of crypto breaches.
2. Airdrop Deception:
- CoinGecko fell victim to hackers using a fake "Coingecko Token" airdrop to lure users into a malicious phishing trap.
3. Authentication Oversights:
- Both CoinGecko and the SEC allegedly lacked basic two-factor authentication on their compromised accounts.
4. Rising Hacker Tactics:
- Security firms report hackers adopting more advanced technologies in 2023 and 2024, signaling a worrisome escalation in cyber threats.
5. Crypto's 2024 Hacking Spree:
- The CoinGecko incident contributes to a series of high-profile crypto hacks in 2024, resulting in losses exceeding $120 million.
6. Security Wake-Up Call:
- The breaches emphasize the evolving sophistication of hackers and the critical need for robust cybersecurity measures in the crypto space.
This week unfolded with a cascade of cybersecurity events, leaving the crypto community on edge. Notably, the US Securities and Exchange Commission's Twitter account fell victim to hacking, disseminating false information about a non-existent ETF approval. A swift turn of events occurred as CoinGecko faced a similar breach, but this time hackers took a different approach, deploying a phishing link for a fake airdrop on its compromised account.
On January 10, CoinGecko acknowledged the breach, revealing that hackers had not only infiltrated its Twitter account but also its terminal. The assailants craftily posted messages offering a bogus "Coingecko Token" airdrop, enticing users to click on a fraudulent link. Despite the swift recovery by CoinGecko, the damage was done, with thousands having already been exposed to the deceptive message.
As CoinGecko took charge of the situation, promptly securing its accounts and initiating an investigation, the incident echoed a broader trend. Earlier on January 9, the US SEC encountered a similar breach, claiming an absence of two-factor authentication (2FA). This lack of 2FA was also identified in the Coingecko case, underscoring the vulnerability of Twitter accounts in this new wave of attacks.
The broader context of the crypto landscape in 2024 reveals an alarming surge in phishing attacks and Twitter account compromises. Prominent entities like CertiK have fallen victim, with hackers exploiting social engineering tactics. The Coingecko incident is just one episode in a series of high-profile hacks, including the $80 million Orbit chain breach, a $7 million CoinsPaid hack, a $4.5 million Radiant Capital breach, and a $3.4 million Gamma strategies hack.
This escalating trend of hacks and breaches in 2024, totaling over $120 million in losses, emphasizes the imperative for investors to exercise heightened vigilance. As the crypto market anticipates increased activity, these incidents underscore the critical need for stringent security measures and heightened awareness among participants. In a landscape marked by volatility, users are reminded to conduct thorough research and make informed financial decisions, given the evolving sophistication of cyber threats.

Disclaimer: Voice of Crypto aims to deliver accurate and up-to-date information, but it will not be responsible for any missing facts or inaccurate information. Cryptocurrencies are highly volatile financial assets, so research and make your own financial decisions.

#CoinGecko #X #Twitter #Hack #Crypto2024