Cybercriminals are deploying fake Ledger apps on macOS to deceive users and steal their seed phrases, which are vital for accessing cryptocurrency wallets. Recent campaigns have evolved to include sophisticated malware like Odyssey and AMOS that mimic legitimate Ledger interfaces and exfiltrate sensitive recovery information. #Odyssey #AMOS #LedgerSecurity #SeedPhraseTheft
Keypoints
- Cybercriminals use counterfeit Ledger apps to target macOS users and steal seed phrases.
- Recent malware campaigns have evolved from simple password theft to full wallet access through seed phrase exfiltration.
- Malware like Odyssey and AMOS clone Ledger apps and deploy phishing pages to trick users into revealing sensitive information.
- Attackers exfiltrate data such as usernames and system info, increasing their chances of successfully stealing assets.
- Users are advised to download Ledger apps only from official sources and to enter seed phrases exclusively on physical Ledger devices.