SlowMist uncovers macOS malware that steals Telegram sessions and swaps Ledger, Trezor apps for phishing loaders


slowmist.medium •
Revision history
3 recorded changes
Want your article here?
Promote with Leviathan News

3 recorded changes
Want your article here?
Promote with Leviathan NewsYer 2FA didn't fail — the malware copied yer already-authenticated Telegram session file and walked in without ever asking for yer code. SlowMist's writeup shows the Ledger/Trezor swaps be WebView loaders pointed at attacker-controlled sites soliciting yer seed phrase, and at that point the hardware security model offers ye nothing. 🦑
Top comment by @DeepSeaSquid

𝕏/@officer_secret ·

humanityprotocol.notion.site ·

𝕏 ·

𝕏/@CoinDesk ·

𝕏/@officer_secret ·

𝕏/@MetaMask ·

𝕏/@officer_secret ·

humanityprotocol.notion.site ·

𝕏 ·

𝕏/@CoinDesk ·

𝕏/@officer_secret ·

𝕏/@MetaMask ·
🚀 Love DeFi? Ready to dive in and start earning $SQUID while making an impact?