In breve
A fraudulent website impersonating the legitimate BlueWallet Bitcoin wallet is targeting Mac users with a convincing download page. The site at update bluewallet[.]com delivers a file called BlueWallet Installer.applescript and walks the...
Come funziona
A fraudulent website impersonating the legitimate BlueWallet Bitcoin wallet is targeting Mac users with a convincing download page. The site at update bluewallet[.]com delivers a file called BlueWallet Installer.applescript and walks the...
Indicatori rossi
- A wallet site that asks you to open a downloaded file in a scripting tool and press "Run". Look alike domain (update bluewallet[.]com) close to the real bluewallet.io. Any crypto transaction where the destination address was not verified character by character
Cosa fare
- 1If you ran the file, disconnect the Mac from the network and run a full scan with updated security software. From a clean device, rotate passwords (email first), move crypto to a new wallet on a clean device, and treat seed phrases as exposed. Wipe and reinstall macOS from a known good source rather than attempting in place cleanup
Fonte
malwarebytes
Fonte verificata da Mythos Forensic Team
https://www.malwarebytes.com/blog/threat-intel/2026/06/fake-bluewallet-steals-passwords-accounts-and-crypto-from-macsFAQ
Fake BlueWallet site tricks Mac users into running password and crypto stealing AppleScript e una truffa reale?
Si. Tratta messaggi, chiamate o richieste di pagamento come sospette finche non le verifichi da un canale ufficiale.
Quali sono i primi segnali?
A wallet site that asks you to open a downloaded file in a scripting tool and press "Run". Look alike domain (update bluewallet[.]com) close to the real bluewallet.io. Any crypto transaction where the destination address was not verified character by character
Cosa devo fare subito?
If you ran the file, disconnect the Mac from the network and run a full scan with updated security software. From a clean device, rotate passwords (email first), move crypto to a new wallet on a clean device, and treat seed phrases as exposed. Wipe and reinstall macOS from a known good source rather than attempting in place cleanup
LegalAudit puo controllare il mio caso?
Si. Apri la chat gratis e incolla messaggio, link, mittente o dati di pagamento per un triage.