Amos and Lumma Crypto Malware Spreading Through Reddit – Are You at Risk?

The use of Reddit as the platform for this scam suggests that scammers are strategically targeting crypto investors and traders. Crypto subreddits are heavily trafficked groups where traders exchange information, argue about market trends, and search for technical analysis tools. The scammers take advantage of the high degree of trust among the crypto community and the growing desire for premium trading tools by posting within these groups.

This has enticed unsuspecting users to download malicious software, which, when installed, compromises their personal information and system security. Recent research by security company Malwarebytes has disclosed how the malware works and the serious threat it constitutes for crypto traders.

How the Scam Works

The fraudsters have been sharing on crypto subreddits, where market participants usually ask for tips and software to enhance their performance in the market. They are marketing the so-called cracked version of TradingView as a free option compared to the paid service, asserting that it was ripped straight from the original software. The promise of accessing advanced charting features and market information without a subscription charge has attracted many users.

Malwarebytes found that the tainted software is double-zipped for Windows and Mac. The last zip is password-protected—a less common characteristic for legal executable files, making it harder for antivirus programs to identify the threat. Once installed and downloaded, the malware behaves differently on the operating system.

Potential Impact and Risks

The malware’s capacity to siphon off user data presents an enormous risk for crypto traders and investors. After it is installed on the end-user device, the malware can extract login credentials that will enable scammers to access accounts on cryptocurrency exchanges and empty the accounts. In particular, it may also expose the financial data the malware finds on the end-user device’s storage, including credit card and bank account information. Additionally, in some cases, malware can extract wallet keys leading to direct access to cryptocurrency holdings.

Targeting Crypto Enthusiasts on Reddit

Crypto subreddits are heavily trafficked groups where traders exchange information, argue about market trends, and search for technical analysis tools. The scammers take advantage of the high degree of trust among the crypto community and the growing desire for premium trading tools by posting within these groups.

Conclusion

The TradingView scam of Reddit users highlights the dynamic nature of crypto-related cyberattacks. By providing free access to premium trading services, the scammer leverages the trust and interest of crypto traders to install highly advanced malware. The simultaneous attack on Windows and Mac operating systems proves that cybercriminals are becoming more adaptable in their attack strategies. As the adoption of cryptocurrency increases, the users need to be careful, not download cracked versions of programs, and make use of proper channels for market analysis tools and trading.