Gate News 消息,3 月 23 日,一款名为 GhostClaw 的恶意软件近期针对 macOS 系统上的加密钱包发起攻击,主要目标为开发者群体。该恶意软件以伪造的 OpenClaw CLI 安装包形式上传至 npm 注册表,账号名为 openclaw-ai,于 3 月 3 日上线,3 月 10 日被下架,期间共感染 178 名开发者。安装后,恶意程序通过诱导用户输入 macOS 密码获取系统权限,随后从远程命令与控制(C2)服务器下载第二阶段载荷 GhostLoader,实施数据窃取与远程访问。GhostLoader 可扫描 Chromium 浏览器、macOS Keychain 及本地存储,提取私钥、助记词、SSH 密钥、云凭证及 AI 平台 API 令牌,并每 3 秒监控一次剪贴板以捕获加密相关敏感数据。被盗数据通过 Telegram、GoFile 及命令服务器传输至攻击者。
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Articoli correlati
North Korea Creditors Seize Restraining Order on Arbitrum's 30,766 ETH on May 1
According to The Block, on May 1, lawyers representing North Korea terrorism creditors served a restraining notice on Arbitrum DAO, preventing the release of 30,766 ETH (~$71.1 million) that the Arbitrum Security Council froze on April 20 following the Kelp DAO exploit. The notice names Arbitrum DAO
GateNews1h fa
Paul Sztorc's eCash Airdrop Draws Developer Warnings
Developers and industry figures have raised concerns about Paul Sztorc's eCash proposal, citing user risk, uneven distribution, and philosophical tension, according to industry commentary. The proposal has been characterized as 'hazardous' due to these issues.
Note: The source material provided con
CryptoFrontier2h fa
Terrorism Creditors Restrain Arbitrum's $71.1M Kelp DAO ETH Release
On May 1, lawyers for terrorism creditors served a restraining notice on Arbitrum DAO, barring the organization from moving 30,766 ETH (~$71.1 million) frozen by the Arbitrum Security Council on April 20 following the $292 million Kelp DAO exploit. The notice, authorized by the U.S. District Court f
CryptoFrontier3h fa
Meta-1 Coin Operator Robert Dunlap Sentenced to 23 Years for $20M Fraud on May 3
According to Forbes, on May 3, Robert Dunlap, operator of the Meta-1 Coin scheme, was sentenced to 23 years in prison for defrauding approximately 1,000 investors between 2018 and 2023, with total losses exceeding $20 million.
The U.S. Department of Justice revealed that Dunlap falsely claimed Meta
GateNews4h fa
Zcash Foundation Releases Zebra 4.4.0 to Fix Multiple Consensus-Level Security Vulnerabilities
According to Zcash Foundation, Zebra 4.4.0 was released recently to fix multiple consensus-level security vulnerabilities. The update addresses denial-of-service flaws that could halt block discovery, block signature operation (sigops) counting errors causing consensus disagreements,
GateNews8h fa
Canton Network's Guardrails Can Block North Korean Hackers, Says Digital Asset CEO
According to Digital Asset CEO Yuval Rooz, Canton network's guardrail design can prevent North Korean-linked hacking groups from operating within its ecosystem, as DeFi faces mounting threats from state-sponsored actors. Rooz told Decrypt that financial institutions have inquired about defenses agai
GateNews10h fa
