Kurzfassung
A fraudulent website impersonating the legitimate BlueWallet Bitcoin wallet is targeting Mac users with a convincing download page. The site at update bluewallet[.]com delivers a file called BlueWallet Installer.applescript and walks the...
Wie es funktioniert
A fraudulent website impersonating the legitimate BlueWallet Bitcoin wallet is targeting Mac users with a convincing download page. The site at update bluewallet[.]com delivers a file called BlueWallet Installer.applescript and walks the...
Warnzeichen
- A wallet site that asks you to open a downloaded file in a scripting tool and press "Run". Look alike domain (update bluewallet[.]com) close to the real bluewallet.io. Any crypto transaction where the destination address was not verified character by character
Was tun
- 1If you ran the file, disconnect the Mac from the network and run a full scan with updated security software. From a clean device, rotate passwords (email first), move crypto to a new wallet on a clean device, and treat seed phrases as exposed. Wipe and reinstall macOS from a known good source rather than attempting in place cleanup
Quelle
malwarebytes
Quelle geprueft vom Mythos Forensic Team
https://www.malwarebytes.com/blog/threat-intel/2026/06/fake-bluewallet-steals-passwords-accounts-and-crypto-from-macsFAQ
Ist Fake BlueWallet site tricks Mac users into running password and crypto stealing AppleScript ein reales Betrugsmuster?
Ja. Behandeln Sie Nachricht, Anruf oder Zahlungsaufforderung als verdaechtig, bis ein offizieller Kanal sie bestaetigt.
Was sind die ersten Warnzeichen?
A wallet site that asks you to open a downloaded file in a scripting tool and press "Run". Look alike domain (update bluewallet[.]com) close to the real bluewallet.io. Any crypto transaction where the destination address was not verified character by character
Was sollte ich zuerst tun?
If you ran the file, disconnect the Mac from the network and run a full scan with updated security software. From a clean device, rotate passwords (email first), move crypto to a new wallet on a clean device, and treat seed phrases as exposed. Wipe and reinstall macOS from a known good source rather than attempting in place cleanup
Kann LegalAudit meinen Fall pruefen?
Ja. Starten Sie den kostenlosen Chat und fuegen Sie Nachricht, Link, Absender oder Zahlungsdaten ein.