Bitcoin
$40,711.31+3.30%
Ethereum
$2,217.95+2.72%
Binance Coin
$223.08-1.29%
XRP
$0.62890694+1.57%
Solana
$64.71+0.94%
Cardano
$0.40697143+2.33%
Dogecoin
$0.08832185+2.72%
Tron
$0.11269121+1.79%
Chainlink
$16.00+0.30%
Avalanche
$22.16-0.34%
Toncoin
$2.32-4.95%
Polygon
$0.82430063+1.29%
PlayIconNav
Crypto Prices CoinDesk Market Index CoinDesk Market Index
Markets

Crypto Price Tracker Poses Malware Threat for Macs: Report

A legitimate-looking cryptocurrency price tracker app may also be monitoring users' keystrokes, according to Malwarebytes.

By Nikhilesh De
AccessTimeIconOct 31, 2018 at 2:15 a.m. UTC
Updated Sep 13, 2021 at 8:32 a.m. UTC
apple

10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

A cryptocurrency ticker application called CoinTicker appears to be installing two backdoors on Apple Macs, cybersecurity firm Malwarebytes warned Monday.

The app downloads and installs parts of two different pieces of malware – EvilOSX and EggShell – both of which are backdoor applications that can be used to log keystrokes, steal data or execute certain commands. Malwarebytes director of Mac and Mobile Thomas Reed wrote that it is possible the malware was designed to steal cryptocurrency keys.

CoinTicker acts as a legitimate application designed to present the price of a selected cryptocurrency on request. The user installing the app can choose between bitcoin, ethereum, monero, zcash and others, according to a screenshot. However, the app also installs EvilOSX and EggShell in the background.

The app does not require root or other elevated permissions, meaning the user likely will not see any sign of infection.

It's unclear what specifically the app's creators want, but Reed noted that "it seems likely that the malware is meant to gain access to users' cryptocurrency wallets for the purpose of stealing coins."

The fact that the malware is distributed through a cryptocurrency app supports this theory, he wrote.

Malwarebytes for Mac now looks for the CoinTicker app, as well as its malware components, he added.

MacBook Pro image via blackzheep / Shutterstock

Disclosure

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is an award-winning media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. In November 2023, CoinDesk was acquired by Bullish group, owner of Bullish, a regulated, institutional digital assets exchange. Bullish group is majority owned by Block.one; both groups have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary, and an editorial committee, chaired by a former editor-in-chief of The Wall Street Journal, is being formed to support journalistic integrity.

Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.