OkoBot Malware Framework Injects Seed Phrase Phishing Into Ledger and Trezor Apps

A malware framework called OkoBot has been running on Windows machines since April 2025, and one of its modules is built to con hardware wallet owners out of their recovery phrase.

On an infected PC, the request comes from inside the wallet’s own desktop software. Sometimes it waits until you plug the device in first. The page is malicious. The app around it is the real one you installed, and

Source: The Hacker News

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

Why developers are ditching GitHub for Codeberg and self-hosting alternatives

Why developers are ditching GitHub for Codeberg and self-hosting alternatives Source: Hacker News

Foreign business owners are scrambling to raise capital to stay in Japan

Foreign business owners are scrambling to raise capital to stay in Japan Source: Hacker News

DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts

DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts A Microsoft 365 device code phishing campaign has been observed leveraging collaboration-themed lures to take control of victim accounts between