Crypto Quill

A Growing Threat to Cryptocurrency Traders

Cybersecurity agency Malwarebytes has raised red flags over a new malware campaign aimed directly at cryptocurrency enthusiasts. The malware, which targets both Mac and Windows systems, is being spread through cracked versions of popular charting software TradingView.

This tactic involves scammers using Reddit to promote their malicious offer. In a recent post, they claimed to offer free, lifetime access to TradingView Premium by bypassing its licensing requirements. The offer, which sounds too good to be true, appeals to traders looking for advanced charting tools without the hefty subscription fee. But behind the scenes, the offer is nothing more than a trap to deliver dangerous malware.

Malwarebytes has confirmed that the malware includes AMOS and Lumma, both designed to steal sensitive information. These tools focus on cryptocurrency wallets, capturing passwords, private keys, and other personal details. The malware is stealthy, making it difficult for users to detect until it’s too late.

Reddit Posts Luring Traders with Tempting Offers

The posts on Reddit follow a similar pattern. The scammers typically claim that a group has cracked the premium version of TradingView, offering a no-cost way for traders to access professional-level charting features. The message often sounds enticing:

“Hey traders! The crew at [name omitted] is excited to offer you a cracked TradingView Premium with lifetime access—totally free! We’ve bypassed the license walls to unlock every premium feature for your charting needs. Whether you’re scalping crypto, swinging stocks, or mapping forex, this is your free pass to pro tools.”

These offers seem harmless at first glance, but as cybersecurity experts have pointed out, they’re nothing more than an elaborate scam. Once a user downloads and installs the cracked software, it opens the door to the malicious AMOS and Lumma malware.

How the Malware Operates

Once installed, the malware operates quietly in the background, capturing keystrokes and extracting sensitive data, including login credentials and private keys linked to cryptocurrency wallets. Because the software masquerades as a legitimate charting tool, many users unknowingly allow it access to crucial information.

The hackers behind this operation then use the stolen data to access cryptocurrency exchanges, draining victims’ wallets and leaving them with significant financial losses.

For now, it’s unclear how many users have fallen victim to this particular attack, but the ease with which the scam is spread—through legitimate-seeming Reddit posts—suggests that this problem could affect a significant number of traders.

Signs That Your System Has Been Compromised

Cybersecurity experts urge users to be cautious when downloading any software from unofficial sources, especially when it seems “too good to be true.”

There are several signs that your system may have been compromised:

• Unexplained system slowdowns or unresponsive applications
• New or unfamiliar processes running in the background
• Suspicious activity on your cryptocurrency exchange accounts
• Unexpected login requests or failed login attempts from unfamiliar devices

If any of these signs are detected, experts recommend running a full security scan with updated antivirus software immediately.

How to Protect Yourself

To avoid falling victim to these types of attacks, traders are advised to:

• Only use official versions of software, directly from the developer’s website or verified sources.
• Use strong, unique passwords for every account and enable two-factor authentication (2FA) for added security.
• Never download cracked software or accept offers that sound too good to be true, particularly from unknown or suspicious sources.

Malwarebytes also recommends running regular security scans, keeping both your operating system and antivirus software up to date, and being cautious of any unsolicited links or downloads.

Cybersecurity Experts’ Growing Concerns

With the growing popularity of cryptocurrency, hackers are constantly developing new methods to exploit traders. The malicious use of cracked software, as seen in this case, represents just one of the many tactics employed by cybercriminals.

In a recent statement, a Malwarebytes spokesperson noted, “We continue to see an uptick in cyberattacks targeting cryptocurrency users. These attacks are becoming more sophisticated, and it’s essential for traders to remain vigilant. Avoiding cracked software is one of the easiest ways to stay safe.”

Growing Number of Malware Attacks on Crypto Users

According to a report by Malwarebytes, cryptocurrency users have become prime targets for hackers due to the high value of digital assets. Over the past year, the company has noticed a significant increase in malware attacks specifically designed to exploit cryptocurrency wallets.

The use of cracked software, particularly popular applications like TradingView, has become one of the most effective ways for cybercriminals to gain access to sensitive data. This attack vector, combined with social engineering tactics like Reddit posts, makes it particularly dangerous for unwary traders.

With cryptocurrency being a largely unregulated market, many victims of these cybercrimes find it difficult to recover their stolen assets. The decentralized nature of cryptocurrencies makes it easy for hackers to transfer stolen funds without detection, making the recovery process even more challenging.