Cryptocurrency exchange Binance has alerted users to a rise in “Clipper malware” attacks that can steal crypto funds. The malware intercepts wallet addresses, replacing them with attackers’. Binance said it has implemented security measures and provided tips to users, including verifying app authenticity, checking withdrawal addresses, and staying updated on security advisories.
Binance Warns of Malware Targeting Crypto Addresses, Urges Users to Always Verify
This article was published more than a year ago. Some information may no longer be current.
WRITTEN BY
SHARE
Clipper Malware Attacks on the Rise
Global cryptocurrency exchange Binance has warned users to be wary of global malware that alters withdrawal addresses during transactions. Known as “Clipper malware,” this malware reportedly intercepts data stored on keyboards, such as crypto wallet addresses. When users copy and paste an address, the malware can swap the original address with an attacker’s, leading to financial losses.
In a blog post, Binance said it has observed a surge in the use of this type of attack since Aug. 27. The crypto exchange warned that the malware is often distributed through unofficial apps and plugins on Android and the web.
“The malware is often distributed through unofficial apps and plugins, especially on Android and web apps, but iOS users should also remain vigilant. Many users inadvertently install these malicious apps while searching for software in their native languages or through unofficial channels, often due to restrictions in their countries,” Binance stated.
Users Urged to Triple-Check Withdrawal Addresses
To prevent more users from falling victim to this type of attack, Binance said it has implemented several countermeasures, such as blacklisting suspicious addresses. The exchange said these measures have stopped numerous withdrawal attempts from potential victims. Binance has informed affected users about the malware and encouraged them to share details about their incidents.
Binance also shared security tips to help users protect their digital assets. These tips include verifying the authenticity of an app and downloading only from official sources. The crypto exchange also encourages users to always double- or triple-check withdrawal addresses before completing transactions, stay updated on security advisories, and use security software.
The top crypto exchange told users that following these steps would significantly reduce their risk of falling victim to this type of scam.
Do you have other suggestions on how to avoid becoming a victim of this type of attack? Share your thoughts in the comments section below.
