Learn how to protect your crypto wallets from the new deadly Trojan
A new WhatsApp Worm is spreading extremely fast in Brazil. It effectively hijacks chats, then consequently sends a fake message to all your contacts and then installs a trojan called Eternidade, which steals bank and crypto wallet logins. The initial attacks commences with social engineering through Whatsapp. An urgent message from an agency, invitation to an investment group is sent. These messages include a zip file attachment. Once the user opens this file, it activates a Python script and Windows installer. The Python script takes over the users WhatsApp, stores the persons contact list and forwards a malicious attachment to everyone on the list. Once installed, it releases the Ethernidade payload. This malware then monitors the banking services, crypto wallets, CEX logins…Once one of these sites are open, it overlays a fake login page, takes screenshots, log keystrokes and essentially steals credentials. How to protect yourself Be very careful of unexpected links and file attachments sent from people in your contact list, especially if it seems very urgent and different to the normal communication style. Use two step verification and log out of linked devices once used. Ensure that your antivirus/malware tools are updated and working. Use two-factor authentication on your banking and crypto app/websites. Stay updated and regular monitor any unusual activity. Make your contacts aware of this problem, to limit the spread of this trojan.