Crypto traders are facing a new threat: fake TradingView software designed to steal your crypto and personal information. Cybersecurity firm Malwarebytes uncovered a scheme where scammers are distributing malware disguised as cracked versions of the popular TradingView Premium platform.
How the Scam Works
This isn’t your average malware. It’s a two-pronged attack using Lumma Stealer and Atomic Stealer. These malicious programs work together to:
- Steal your crypto: They target cryptocurrency wallets and two-factor authentication browser extensions.
- Grab your personal data: They snag administrator and keychain credentials, allowing scammers to impersonate you and phish your contacts.
The scammers are active on cryptocurrency subreddits, offering “cracked” versions of TradingView for free. They even go the extra mile, acting helpful and answering user questions to build trust.
Red Flags to Watch Out For
Don’t fall for this trap! Here are some warning signs:
- Double-zipped, password-protected files: Legitimate software doesn’t use this distribution method.
- Requests to disable security software: This is a major red flag. Never disable your security software to run a program from an untrusted source.
- Hidden disclaimers: The scammers often bury a “download at your own risk” disclaimer, hoping you’ll miss it.
The Bigger Picture: Crypto Crime Goes Pro
This scam is part of a larger trend. Crypto crime is becoming increasingly sophisticated, with AI-driven schemes and well-organized cyber syndicates making it a multi-billion dollar problem. The scammers behind this TradingView scam are no exception, using a website hosted by a Dubai cleaning company and a command-and-control server registered in Russia.
The bottom line: Be extremely cautious when downloading software, especially free versions of premium tools from unofficial sources. Your vigilance is your best defense against these sophisticated scams./p>
