Cthulhu Stealer Virus is Draining Cryptocurrency Wallets: Here's How to Protect Yourself
Security researchers have identified a new malware threat targeting macOS users, known as "Cthulhu Stealer." This malware specifically targets macOS systems, challenging the belief that Apple's operating system is immune to such threats.
The Cthulhu Stealer disguises itself as legitimate software, such as CleanMyMac or Adobe GenP, and is distributed as an Apple disk image file (DMG). Once executed, it prompts users for their system password and MetaMask wallet credentials, then stores the stolen information in a hidden directory. The malware's primary function is to extract cryptocurrency wallets and other sensitive data.
The Cthulhu Stealer is operated by a group known as the "Cthulhu Team," which uses Telegram for communication. They offer the stealer for rent at $500 per month as part of a malware-as-a-service model, with affiliates responsible for its deployment and receiving a percentage of the profits.
How to Protect Yourself
To protect against this malware, macOS users should only download software from trusted sources, such as the official App Store or verified developer websites. Additionally, enabling multi-factor authentication (MFA) on cryptocurrency wallets can add an extra layer of security, making it more difficult for malware to access your funds.
Given the increasing threats to macOS users, it's crucial to stay vigilant and adopt these protective measures to safeguard your cryptocurrency assets.