Scammers are using cracked versions of TradingView Premium to drain crypto wallets.
The app is disguised as a “cracked” version of the real TradingView Premium app. Downloads of the malware infused versions are being distributed via Reddit and have often been found in cryptocurrency sub Reddits.
Victims have reported having their entire crypto wallets emptied. They were then impersonated by the scammers, who used their details to send out phishing attempts encouraging the victims’ contacts to download and install the infected app.
Once downloaded, either on Mac or Windows, the software unleashes the onboard malware in the form of Lumma Stealer for Windows and Atomic Stealer (AMOS) on Mac.
Analysis of the code shows that the AMOS…
Apr 21 2025
