TechFlow, July 31 — According to Cointelegraph, Check Point Research has revealed a malware campaign dubbed "JSCEAL" that is impersonating nearly 50 popular cryptocurrency trading apps globally, including Binance, MetaMask, and Kraken. The campaign, active since March 2024, uses malicious ads to lure users into downloading fake apps embedded with malware.
The research shows that 35,000 malicious ads were served in the first half of 2025, impacting millions of users across the European Union alone. The malware employs unique anti-detection techniques and can harvest sensitive data such as keystrokes, Telegram account information, and autofilled passwords, as well as manipulate cryptocurrency-related browser extensions. Experts recommend using anti-malware tools capable of detecting malicious JavaScript execution to effectively defend against such attacks.
