1/ ⚠️ New Open-Source Malware⚠️
🎯 Targeting Web3 🧵
Code Named: Luca Stealer 🥷
🔍 High Level:
- Primarily an info stealer
- Targets cold/hot wallets
- Steals discord tokens
- Steals from over 17 different extensions 👇
🎯 Targeting Web3 🧵
Code Named: Luca Stealer 🥷
🔍 High Level:
- Primarily an info stealer
- Targets cold/hot wallets
- Steals discord tokens
- Steals from over 17 different extensions 👇
2/ Why should you care?
“The malware, which the author claims to have developed in just six hours, is quite stealthy, with VirusTotal returning a detection rate of around 22%.” - Bleeping Computer
The entire code-base for this malware was released for free. 👇
“The malware, which the author claims to have developed in just six hours, is quite stealthy, with VirusTotal returning a detection rate of around 22%.” - Bleeping Computer
The entire code-base for this malware was released for free. 👇
3/ What makes this malware interesting?
🔍 Uses Discord web-hooks OR Telegram bots to communicate back to attacker
🔍 Written in Rust which allows for easy porting to macOS or Linux
🔍 Can modify clipboard to attempt to steal crypto by replacing the copied address with theirs.
🔍 Uses Discord web-hooks OR Telegram bots to communicate back to attacker
🔍 Written in Rust which allows for easy porting to macOS or Linux
🔍 Can modify clipboard to attempt to steal crypto by replacing the copied address with theirs.
4/ Why should Web3 Care?
🔲 This malware targets your hot/cold wallets.
🔲 Could replace copied addresses on clipboard
🔲 Easy to impact Windows, macOS and Linux
🔲 Low Detection Rate
🔲 This malware targets your hot/cold wallets.
🔲 Could replace copied addresses on clipboard
🔲 Easy to impact Windows, macOS and Linux
🔲 Low Detection Rate
5/ What can I do to protect myself?
🔲 Download @Malwarebytes and get premium
🔲 Never download random files
🔲 Always open documents via Google Docs or something similar
🔲 Check the copied address every-time before sending any transactions.
🔲 Download @Malwarebytes and get premium
🔲 Never download random files
🔲 Always open documents via Google Docs or something similar
🔲 Check the copied address every-time before sending any transactions.
7/ If you liked this thread, please consider giving us a follow & sharing the thread 🙂
Website: walletguard.app
Discord: discord.gg/wQQZgjxxPR
Website: walletguard.app
Discord: discord.gg/wQQZgjxxPR
8/ Twitter Spaces:
🎙Web3 Security Radio: Episode 9🎙
📝 Topics:
- Luca Stealer
- Malware/Threats in Web3
- Virtual Machines
- Requests topics in our discord! 🙂
If you’d like to be a panelist send a DM🎙
#spaceshost
twitter.com/i/spaces/1DXxy…
🎙Web3 Security Radio: Episode 9🎙
📝 Topics:
- Luca Stealer
- Malware/Threats in Web3
- Virtual Machines
- Requests topics in our discord! 🙂
If you’d like to be a panelist send a DM🎙
#spaceshost
twitter.com/i/spaces/1DXxy…
9/ Jump to the top of the thread
https://twitter.com/wallet_guard/status/1551894224144138240
10/ This is going to get worse imo.
https://twitter.com/thecybersechub/status/1551996361108750338
• • •
Missing some Tweet in this thread? You can try to
force a refresh
