Confiant’s Taha Karim has released a deep-dive into an extensive campaign from threat actor SeaFlower, where backdoored Web3 Wallets for iOS and Android mimics official cryptocurrency wallet websites intending to distribute apps that drain victims’ funds. The threat actor is likely Chinese according to the deep dive.
Chris Olson of The Media Trust had this to say:
“Cryptocurrency is rapidly becoming a battlefield for global cyber actors who target crypto owners through multiple channels. While many are waking up to the danger of email-based phishing scams, few are prepared for SEO and web-based attacks that target Internet traffic and mobile users. Aside from encouraging caution among NFT and crypto users, this incident has three implications: first, web and mobile devices are growing as threat surfaces – second, foreign actors can leverage those surfaces to target users around the world. Finally, Web3 may be vulnerable to the same threats that have made Web 2.0 unsafe for years, unless early adopters of the technology commit to minimal standards of digital safety and trust.”
There are mitigation strategies in the deep dive, along with promises of a “part 2” to this. Thus if you’re in the cryptocurrency space, you might want to stay tuned for that.
“SeaFlower” Goes After Web3 Wallets On iOS And Android
Posted in Commentary with tags Cryptocurrency, Hacked, Web3 on June 13, 2022 by itnerdConfiant’s Taha Karim has released a deep-dive into an extensive campaign from threat actor SeaFlower, where backdoored Web3 Wallets for iOS and Android mimics official cryptocurrency wallet websites intending to distribute apps that drain victims’ funds. The threat actor is likely Chinese according to the deep dive.
Chris Olson of The Media Trust had this to say:
“Cryptocurrency is rapidly becoming a battlefield for global cyber actors who target crypto owners through multiple channels. While many are waking up to the danger of email-based phishing scams, few are prepared for SEO and web-based attacks that target Internet traffic and mobile users. Aside from encouraging caution among NFT and crypto users, this incident has three implications: first, web and mobile devices are growing as threat surfaces – second, foreign actors can leverage those surfaces to target users around the world. Finally, Web3 may be vulnerable to the same threats that have made Web 2.0 unsafe for years, unless early adopters of the technology commit to minimal standards of digital safety and trust.”
There are mitigation strategies in the deep dive, along with promises of a “part 2” to this. Thus if you’re in the cryptocurrency space, you might want to stay tuned for that.
Leave a comment »