National Cyber Warfare Foundation (NCWF)

OkoBot Malware Framework Injects Seed Phrase Phishing Into Ledger and Trezor Apps


0 user ratings
2026-07-15 16:40:45
milo
Blue Team (CND)
A malware framework called OkoBot has been running on Windows machines since April 2025, and one of its modules is built to con hardware wallet owners out of their recovery phrase.

On an infected PC, the request comes from inside the wallet's own desktop software. Sometimes it waits until you plug the device in first. The page is malicious. The app around it is the real one you installed, and



Source: TheHackerNews
Source Link: https://thehackernews.com/2026/07/okobot-malware-framework-injects-seed.html


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Blue Team (CND)



Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.