The joint report from the FBI and others reveals the malware Infamous Chisel, which can steal assets and data from encrypted wallets and exchange apps
ChainCatcher news, according to The Block, a joint advisory report from the FBI, NSA, CISA, and GCHQ reveals that Russia's new malware Infamous Chisel is designed to maintain access to compromised Android devices through the Tor network and regularly collect and send victim data from the affected devices. Its targets include cryptocurrency wallets and exchange applications.
As part of unauthorized copying, transmission, or retrieval of data, the malware searches specific application directories on the device, including those related to the web3 browser Brave, Binance and Coinbase applications, Trust crypto wallet, and communication platforms Telegram and Discord. Additionally, it targets the Android Keystore system used by users to store private keys, extracting every file from the directories.