TLDR
A fraudulent website impersonating the legitimate BlueWallet Bitcoin wallet is targeting Mac users with a convincing download page. The site at update bluewallet[.]com delivers a file called BlueWallet Installer.applescript and walks the...
Como funciona
A fraudulent website impersonating the legitimate BlueWallet Bitcoin wallet is targeting Mac users with a convincing download page. The site at update bluewallet[.]com delivers a file called BlueWallet Installer.applescript and walks the...
Señales de alerta
- A wallet site that asks you to open a downloaded file in a scripting tool and press "Run". Look alike domain (update bluewallet[.]com) close to the real bluewallet.io. Any crypto transaction where the destination address was not verified character by character
Qué hacer
- 1If you ran the file, disconnect the Mac from the network and run a full scan with updated security software. From a clean device, rotate passwords (email first), move crypto to a new wallet on a clean device, and treat seed phrases as exposed. Wipe and reinstall macOS from a known good source rather than attempting in place cleanup
Fuente
malwarebytes
Fuente verificada por Mythos Forensic Team
https://www.malwarebytes.com/blog/threat-intel/2026/06/fake-bluewallet-steals-passwords-accounts-and-crypto-from-macsFAQ
Es Fake BlueWallet site tricks Mac users into running password and crypto stealing AppleScript una estafa real?
Si. Trata el mensaje, la llamada o la solicitud de pago como sospechosos hasta que los verifiques por un canal oficial.
Cuales son las primeras senales?
A wallet site that asks you to open a downloaded file in a scripting tool and press "Run". Look alike domain (update bluewallet[.]com) close to the real bluewallet.io. Any crypto transaction where the destination address was not verified character by character
Que debo hacer primero?
If you ran the file, disconnect the Mac from the network and run a full scan with updated security software. From a clean device, rotate passwords (email first), move crypto to a new wallet on a clean device, and treat seed phrases as exposed. Wipe and reinstall macOS from a known good source rather than attempting in place cleanup
Puede LegalAudit revisar mi caso?
Si. Abre el chat gratis y pega el mensaje, el enlace, el remitente o los datos de pago para un triage.