Security experts have discovered an app that steals cryptocurrency from Solana owners

According to BleepingComputer, cryptocurrency hackers have once again become more active, stealing digital assets through fake updates.

The hackers impersonated the developers of the Phantom cryptocurrency wallet and sent NFTs called PHANTOMUPDATE.COM or UPDATEPHANTOM.COM to users. After sending out the non-fungible tokens, the hackers asked their victims to perform a security update by clicking on the link.

To add urgency and encourage users to click on the link immediately, the message claimed that refusal to download the update «may result in loss of funds due to hackers' use of the Solana network.» If the victim followed all the instructions to update Phantom, the process ended up downloading malware from GitHub that helps hackers steal search history information, cookies, passwords, keys, and other user information.

Security experts advise to be especially careful not to open suspicious links, as there are dozens of malware aimed at stealing cryptocurrency. For example, in early September, users were warned about a hacker application developed on the basis of SharkBot software. An updated version of the pseudo-application Mister Phone Cleaner, which allegedly removes unnecessary programs and garbage from a mobile phone, was available for download in the Android app store. The program, created by hackers from SharkBot, stole cookies during account login and bypassed security checks.