A newly identified macOS malware is stealing user credentials to hijack Telegram sessions and compromise cryptocurrency wallets, according to CoinTelegraph. The malware either decrypts wallets directly or tricks victims into revealing their wallet recovery phrases through fake applications.

This threat highlights the growing risk of targeted cyberattacks on crypto users, with Telegram sessions being exploited as an entry point. Security firm SlowMist has been monitoring these activities, emphasizing the importance of safeguarding both messaging accounts and crypto assets.

For Japanese investors active in FX and crypto markets, this serves as a reminder to maintain stringent security practices, including cautious use of third-party applications and careful management of private keys and recovery phrases.