Cybercriminals are using fake Ledger apps to steal seed phrases for cryptocurrency wallets from macOS users. The malware impersonates the genuine app, prompting the user to enter their seed phrase on a phishing site. This technique allows the criminals to empty victims’ wallets. Researchers advise only downloading the Ledger Live app from the official website and only entering the seed phrase when restoring the wallet, directly on the physical Ledger device.
Why a recent supply-chain attack singled out security firms Checkmarx and Bitwarden
It has been a bad six weeks for security firm Checmarx. Over the past 40 days, it has been the victim of at least one
