Binance Alerts Users to New Crypto Malware Threat
Binance has issued a global alert about an emerging threat known as “Clipper malware.” This malicious software is designed to intercept and alter wallet addresses during transactions, leading to potential financial losses.
It works by replacing a user’s copied wallet address with one controlled by the attackers, causing funds to be transferred to the wrong account without the user’s knowledge.
Since August 27, 2024, Binance has observed a surge in these attacks, primarily targeting Android users, although iOS users are also at risk. The malware often spreads through unofficial apps and plugins from unverified sources, particularly when users search for software in local languages.
Binance has responded by blacklisting suspicious addresses, alerting affected users, and closely monitoring for further risks. Users are advised to carefully verify withdrawal addresses and consider taking screenshots of addresses to cross-check with the intended recipient to avoid falling victim to the malware.
READ MORE: SEC Signals Possible Easing of Bank Crypto Custody Rules
The exchange also emphasized the need for users to verify the authenticity of apps and plugins and to use reliable security software.
Market experts identify Clipper malware as a variant of address poisoning attacks, which have previously resulted in significant thefts, such as the $70 million loss in wrapped Bitcoin (WBTC) earlier this year.