Brazilian Crypto Holders Targeted by WhatsApp Banking Trojan

Brazilian crypto holders are facing threats from a hijacking worm and banking trojan spread through WhatsApp. These malicious messages may appear as fake government programs or come from friends, urging caution against clicking suspicious links.

WhatsApp Scams Target Brazilian Crypto Users

SpiderLabs identified a banking trojan named “Eternidade Stealer” spreading via WhatsApp.
The trojan is distributed using fake government notices, delivery alerts, and fraudulent investment groups.
Infection occurs when a user clicks the worm link, leading to financial data theft from their device.
Brazilian crypto users are advised to remain cautious of suspicious links.

Cybercriminals are increasingly exploiting WhatsApp due to its widespread use in Brazil.

Sophisticated Tactics in Crypto Hacks

Hackers have refined their tactics over the past two years, leveraging WhatsApp for malware distribution.
A hacker recently siphoned $3 million in digital assets from a US citizen and laundered funds via OTC venues.
On September 12, the Shibarium bridge was hacked, resulting in a loss of over $4 million in crypto assets.
The Shibarium attack utilized a flash loan to compromise validator signing keys.

These incidents highlight the evolving methods of cybercriminals targeting the crypto space.