New Cyber Threat in Web3: Virus Infecting Smartphones Before Purchase

As is known, the first serious threat from computer viruses emerged in 1986 when a group of Pakistani programmers created a malicious code called Brain. This virus spread through infected floppy disks and became the starting point for the evolution of malware. Since then, viruses have become increasingly sophisticated, refining their infection methods and evading security systems. Modern cyber threats can not only disable devices but also steal personal data, financial assets, and even control devices without users’ knowledge.

Coinmooner would like to discuss a new threat in the Web3 space that was recently discovered and poses a significant danger to digital asset users. This virus infiltrated mobile devices even before they were delivered to their owners, making the situation especially alarming. According to Kaspersky researchers, the malware is embedded in the firmware of Android smartphones at the production or supply stage. As a result, these devices are vulnerable from the outset, becoming tools for data and cryptocurrency theft.

The updated version of the Triada virus has a wide range of malicious functions. It can steal Telegram and TikTok accounts, intercept cryptocurrency transactions from digital wallets, send messages, and change phone numbers during calls. Additionally, this Trojan spies on browser activity blocks certain network connections and transmits the collected data to the attackers’ servers. One of the most dangerous features of Triada is its ability to grant malware superuser rights, allowing it to integrate into system processes and even modify URLs in browsers. According to experts, since June 2024, this virus has infected over 2,600 devices, mainly in Russia, and the total financial loss from stolen cryptocurrency has exceeded $270,000.

Mobile Devices as Tools for Data Theft: The Growing Threat of Triada

Cybersecurity experts note that many smartphone vendors are unaware of the virus present in their devices. To protect against such threats, users are advised to purchase gadgets only from trusted suppliers, use reliable antivirus software, and regularly update their operating systems. These measures will help reduce the risk of infection and protect personal data from attackers.

Earlier, the Microsoft Incident Response research team reported the emergence of a new type of malware, a remote access Trojan (RAT) designed to search for and steal data from more than 20 cryptocurrency wallet extensions in the Google Chrome browser. This indicates that cybercriminals continue to develop new attack methods targeting Web3 users in an attempt to access their digital assets.

Coinmooner strongly recommends that all users implement the most advanced security measures to minimize risks and protect their finances. Stay vigilant, keep up with cybersecurity updates, and use only trusted digital tools!