Crypto Malware Alert: Lumma and AMOS Stalk Users via Reddit

Jakarta, Pintu News – Cyber threats in the cryptocurrency world continue to rise, with the advent of Lumma and AMOS malware now spreading through posts on Reddit. The main targets of these attacks are Windows and Mac users who are active in the crypto community, specifically those looking for free software such as “cracked” versions of TradingView. The perpetrators capitalize on the interest in trading tools to spread malicious software that can steal personal data and access to crypto wallets.

Modes of Spread Through Fake Software

A post on a crypto-related subreddit offers a cracked version of the TradingView app, a popular platform for stock, forex, crypto, and commodity market analysis. The scammers claim that this version comes directly from an official source and grants access to premium features for free. This becomes an effective bait to trap users who are tempted by such attractive offers.

However, behind the shared installer files lurks a serious threat. Malwarebytes, a cybersecurity company, reported that both the Windows and Mac versions of the distributed files were double-zipped and encrypted. This is unusual for legitimate software and a strong indication of malicious intent by the uploader.

Also Read: Bitcoin (BTC) Hasn’t Responded to Wall Street’s Demands, BlackRock Executive Warns

Attack Techniques on macOS and Windows

On the macOS operating system, the latest version of the AMOS malware is used. AMOS is known as one of the most sophisticated stealers for Macs. Once installed, the program will send user data via POST requests to a server hosted in Seychelles, with an IP address of 45.140.13.244. Interestingly, this malware has a virtual machine detection feature; if run in a virtual environment, the process will be terminated with a special error code (error code 42).

Meanwhile, on the Windows version, the payload is loaded via a disguised batch (.bat) file. The malicious script is linked to the newly registered ‘cousidporke[.]icu’ malicious domain in Russia. This technique shows that the perpetrators are not relying on just one operating system, but are developing cross-platform attacks to reach more victims in the cryptocurrency ecosystem.

Threats to Crypto Users

Crypto and cryptocurrencies have become attractive targets for cybercriminals due to the hard-to-trace and irreversible nature of digital assets if they have been stolen. In this case, the scammers targeted Reddit users who may be less vigilant or have limited technical knowledge. By disguising the malware as useful software, they created a false sense of security for potential victims.

Data theft such as seed phrases, wallet files, login credentials, and crypto wallet information are the main risks posed by this type of malware. Once the data is successfully retrieved, the perpetrators can irreversibly drain the user’s digital assets. This highlights the need for extra vigilance for anyone involved in the crypto world, whether as a trader, investor, or casual user.

The Importance of Security in the Crypto World

In the face of threats like this, education is the main weapon. Users should avoid downloading software from unofficial sources, especially “cracked” versions that promise premium features for free. In addition, the use of an up-to-date antivirus, verification of downloaded files, and good cybersecurity practices are highly recommended.

Crypto is a fast-growing financial technology innovation, but as with any digital system, it is also vulnerable to abuse. Therefore, an understanding of the risks as well as preventive measures are essential to keep crypto assets safe. As adoption increases, there will be more and more malicious attempts to exploit the loopholes of careless users.

Conclusion

The emergence of the Lumma and AMOS malware that infiltrated through Reddit forums is an important reminder that security in the cryptocurrency world is not just a matter of technology, but also user behavior. With the increasing number of cyberattacks targeting crypto, awareness and caution in using software is key to protecting digital assets from evolving threats.

Also Read: This is Arhur Hayes’ BTC Price Prediction Based on April 2025 Fed Rate!

That’s the latest information about crypto news today. Get more information about crypto academy from beginner to expert level only at Pintu Academy and enrich your knowledge about the world of crypto and blockchain.

Follow us on Google News to get the latest information about crypto and blockchain technology. Enjoy an easy and secure crypto trading experience by downloading Pintu Crypto via Google Play Store or App Store now.

Experience web trading with advanced trading tools such as pro charting, various order types, and portfolio tracker only at Pintu Pro. Click Register Pintu if you don’t have an account or click Login Pintu if you are already registered.

*Disclaimer

This content aims to enrich readers’ information. Pintu collects this information from various relevant sources and is not influenced by outside parties. Note that an asset’s past performance does not determine its projected future performance. Trading crypto carries high risk and volatility, always do your own research and use cold hard cash before investing. All activities of buying andselling Bitcoin and other crypto asset investments are the responsibility of the reader.

Reference:

• Cryptopolitan. AMOS and Lumma crypto malware targets users via Reddit. Accessed March 21, 2025.
• Featured Image: The image created by Ai