Express
Check Point Security Company Warns of Large-Scale JSCEAL Malicious Activities Targeting Crypto Users
Summary: Check Point security company has warned of a large-scale malicious activity named JSCEAL, where attackers are using Node.js platform to exploit compiled JavaScript files to target crypto users. The operation has been active since March 2024, with attackers luring users to download and install malicious programs posing as nearly 50 mainstream crypto trading apps. In ...
Check Point security company has warned of a large-scale malicious activity named JSCEAL, where attackers are using Node.js platform to exploit compiled JavaScript files to target crypto users. The operation has been active since March 2024, with attackers luring users to download and install malicious programs posing as nearly 50 mainstream crypto trading apps. In the first half of 2025, around 35,000 related malicious ads were detected, with millions of exposures in the EU alone. The attack process is multi-layered with strong anti-detection capabilities, capable of stealing sensitive information such as user credentials and wallets, as well as having functions like remote control, keylogging, and browser traffic hijacking. The research indicates that the detection rate of this malicious program is extremely low, with some variants not being identified by mainstream antivirus software for a long time. Users are advised to be vigilant and avoid downloading crypto apps from unofficial sources.
Tags:
Link: Check Point Security Company Warns of Large-Scale JSCEAL Malicious Activities Targeting Crypto Users [Copy]
