New Android malware SpyAgent steals private keys, FBI warns

Recently, McAfee discovered a new Android malware called SpyAgent, which can steal users' private keys through text in mobile screenshots and images using optical character recognition (OCR) technology. The malware is spread through malicious links in text messages. After clicking on the link, the user will be directed to a page disguised as a legitimate website and prompted to download a seemingly credible application. Once installed, the malware can obtain the user's contacts, messages, and local storage permissions. Currently, SpyAgent mainly targets Korean users and has been found in more than 280 fraudulent applications. In addition, malware attacks are on the rise in 2024. Cthulhu Stealer, discovered in August, affects MacOS systems and steals users' encrypted wallet information. In the same month, Microsoft patched a vulnerability in Google Chrome that was used by the North Korean hacker group Citrine Sleet to disguise fake crypto exchage and spread malware through fraudulent job applications. The Federal Bureau of Investigation (FBI) has issued a warning to remind the public that the cryptocurrency industry is becoming a major target of North Korean hackers.