TechFlow news — On November 26, Yu Xian, founder of SlowMist, warned via social media that a hacking group has recently launched targeted poisoning attacks against the crypto industry. The attackers impersonate venture capitalists (VCs) and send fake meeting links to victims, tricking them into downloading malicious scripts (e.g., "IP_Request.scpt"). The primary targets are users of Mac computers.
If infected, it is recommended to take the following actions immediately:
1. Transfer assets: If your computer stores wallets (private keys or seed phrases), promptly move your assets to a secure location;
2. Review accounts: Change passwords and two-factor authentication (2FA) for critical accounts (such as Telegram, X, email, and cryptocurrency exchanges), and check for any suspicious login devices;
3. Virus removal: Perform a full system scan using reputable antivirus software (e.g., AVG, Bitdefender, Kaspersky), and if necessary, use multiple tools alternately to ensure thorough detection;
4. System reset: If concerns persist, back up essential files, then reset the computer. Scan each backed-up file individually before restoring.
Security experts emphasize that swift action is crucial upon suspected compromise—never assume you're unaffected, as consequences may be irreversible. Strengthening daily security awareness and avoiding clicking unknown links or downloading suspicious files are key to preventing such attacks.




