🚨 10 Million Users Targeted by Fake Crypto Apps in Global Malware Campaign 🚨

AIcash

Cybersecurity firm Check Point has issued a major warning to crypto users: a sophisticated malware campaign is sweeping across social media platforms, using fake crypto trading apps to steal sensitive data.
️‍️ The Campaign: “JSCEAL”

Check Point Research has been tracking this malware operation since March 2024. Dubbed JSCEAL, the campaign spreads through malicious ads on platforms like Facebook, luring users into downloading fake versions of nearly 50 popular crypto apps — including Binance, MetaMask, and Kraken.

Once installed, these lookalike apps open what seems to be a legitimate interface, but secretly begin harvesting personal and financial data.
Scope: At Least 10 Million Exposed

35,000 malicious ads have already been promoted in the first half of 2025.

3.5 million people in the EU alone were shown these ads.

The global reach is estimated at over 10 million users, especially in Asia where crypto adoption and social media usage are high.

⚠️ Remember: ad reach ≠ infections. But the potential impact is massive.

🧠 How the Scam Works

You see a fake crypto ad on social media.

Click → You land on a lookalike website.

You install what you think is a real crypto app.

In the background, JavaScript-based malware runs:

    Steals saved passwords and cookies

    Monitors keystrokes (i.e., logs passwords)

    Scrapes your Telegram login

    Targets crypto wallet extensions like MetaMask

Check Point says the malware is heavily obfuscated, which helps it bypass many antivirus tools and makes it nearly invisible to the average user.
How to Protect Yourself

Avoid downloading apps via ads — always go directly to official websites or app stores.
Use antivirus software that scans for malicious JavaScript.
Monitor wallet permissions and browser extensions regularly.
Never share wallet seed phrases or passwords, even if a prompt looks legitimate.
🧩 Why Crypto Users Are Prime Targets

With irreversible transactions and pseudonymous blockchains, crypto theft is high-reward, low-risk for attackers. Once your funds are gone — they’re gone.

This isn’t a small phishing attempt — it’s a global, evolving, AI-savvy malware campaign aimed at draining your digital wallet.

Stay cautious, stay updated, and never let your guard down in Web3.

Have you seen any suspicious crypto ads lately? Share your experience below — someone else might learn from it.

Nahiar806

I’ve seen a few sketchy MetaMask ads on Facebook lately. Glad I always double-check URLs, but this is a serious wake-up call for newer users.

Maxwell

This is why I never install crypto apps through ads. If something seems too slick or urgent, it's usually a scam. Go straight to the official site, every time.