安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标

金色财经

Sep 12

【安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标】金色财经报道，安全公司 Mosyle 披露，研究人员发现了一种新型恶意软件，它能够绕过杀毒软件检查，从 Windows、Linux 和 macOS 系统上的加密货币钱包窃取数据，这款被称为 ModStealer 的恶意软件，在披露时已经在主流杀毒引擎下潜伏了近一个月而未被发现，其传播方式是通过针对开发者的虚假招聘广告投放。 Mosyle表示，通过虚假招聘广告进行传播是有意为之，因为目标是那些可能已经在使用 Node.js 环境的开发者。区块链安全公司 Slowmist 的首席信息安全官 Shān Zhang表示：“ModStealer 能够避开主流杀毒软件的检测，对整个数字资产生态系统构成重大风险。与传统的窃取程序不同，ModStealer 的突出特点是支持多平台，并采用隐秘的‘零检测’执行链。”

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Most Discussed

{"basename":"","ssrTDKData":{"titleTemplate":"%s - Tiger Brokers","title":"Tiger Brokers | Global Stocks, Options & Futures Trading App","description":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","keywords":"tiger brokers,tiger trade,tiger brokers singapore,broker online,stock trading in singapore,share trading singapore,brokerage firm singapore,trading app,stock broker singapore,stock trading platforms,trading account","social":{"ogDescription":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","ogImage":"https://c1.itigergrowtha.com/portal5/static/media/og-logo.be62fbe1.png","ogUrl":"https://www.itiger.com/news/2566904947"},"companyName":"Tiger Brokers"},"pageData":{"isMobile":false,"isTiger":false,"isTTM":true,"region":"SGP","license":"TBSG","edition":"fundamental"},"isCrawlerRequest":true,"__swrFallback__":{"@#url:\"https://stock-news.skytigris.cn/v3/news\",params:#id:\"2566904947\",edition:\"fundamental\",auth_exemption:1,,,undefined,":{"share":"https://ttm.financial/m/news/2566904947?lang=en_US&edition=fundamental","thumbnail":"","is_english":false,"pubTime":"2025-09-12 12:35","share_image_url":"https://static.laohu8.com/e9f99090a1c2ed51c021029395664489","id":"2566904947","market":"fut","top_or_hot":-1,"title":"安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标","media":"金色财经","content":"<html><body><p>【安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标】金色财经报道，安全公司 Mosyle 披露，研究人员发现了一种新型恶意软件，它能够绕过杀毒软件检查，从 Windows、Linux 和 macOS 系统上的加密货币钱包窃取数据，这款被称为 ModStealer 的恶意软件，在披露时已经在主流杀毒引擎下潜伏了近一个月而未被发现，其传播方式是通过针对开发者的虚假招聘广告投放。 \nMosyle表示，通过虚假招聘广告进行传播是有意为之，因为目标是那些可能已经在使用 Node.js 环境的开发者。 \n区块链安全公司 Slowmist 的首席信息安全官 Shān Zhang表示：“ModStealer 能够避开主流杀毒软件的检测，对整个数字资产生态系统构成重大风险。与传统的窃取程序不同，ModStealer 的突出特点是支持多平台，并采用隐秘的‘零检测’执行链。”</p></body></html>","source":"jinse_live","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\n安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标\n</h2>\n\n<h4 class=\"meta\">\n\n\n2025-09-12 12:35 北京时间&nbsp;&nbsp;&nbsp;<a href=https://decrypt.co/339153/researchers-undetectable-malware-drain-crypto-browser-wallets><strong>金色财经</strong></a>\n\n\n</h4>\n\n</header>\n<article>\n<div>\n<p>【安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标】金色财经报道，安全公司 Mosyle 披露，研究人员发现了一种新型恶意软件，它能够绕过杀毒软件检查，从 Windows、Linux 和 macOS 系统上的加密货币钱包窃取数据，这款被称为 ModStealer 的恶意软件，在披露时已经在主流杀毒引擎下潜伏了近一个月而未被发现，其传播方式是通过针对...</p>\n\n<a href=\"https://decrypt.co/339153/researchers-undetectable-malware-drain-crypto-browser-wallets\">Source Link</a>\n\n</div>\n\n\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"FBTC","symbol_name":"Fidelity Wise Origin Bitcoin Fund","start_time":0,"source_url":"https://decrypt.co/339153/researchers-undetectable-malware-drain-crypto-browser-wallets","article_id":"2566904947","we_media_id":null,"thumbnails":[],"rights":null,"url":"https://stock-news.laohu8.com/highlight/detail?id=2566904947","pubTimestamp":1757651710,"columns":[],"sourceInfo":{"source_id":"jinse_live","name":"金色财经"},"weMediaInfo":null,"summary":"【安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标】金色财经报道，安全公司 Mosyle 披露，研究人员发现了一种新型恶意软件，它能够绕过杀毒软件检查","collect":0,"end_time":0,"defaultTopTitle":"decrypt.co","property":[],"viewcount":null,"language":"zh","relate_stocks":{"165523":"信息安全","399994":"信息安全","FBTC":"Fidelity Wise Origin Bitcoin Fund","GBTC":"Grayscale Bitcoin Trust ETF","BK4577":"网络游戏","SG9999001077.SGD":"United International Growth Fund SGD","BITO":"ProShares Bitcoin ETF","MSFT":"微软","LU0719512351.SGD":"JPMorgan Funds - US Technology A (acc) SGD","DEFI":"Hashdex Bitcoin ETF","BRRR":"CoinShares Valkyrie Bitcoin Fund","LU0061474960.USD":"天利环球焦点基金AU Acc","LU1301847155.USD":"BGF GLOBAL MULTI-ASSET INCOME FUND \"A4G\" (USD) INC","LU1914381329.SGD":"Allianz Best Styles Global Equity Cl ET Acc H2-SGD","BTCO":"Invesco Galaxy Bitcoin ETF","LU0170899867.USD":"EASTSPRING INVESTMENTS WORLD VALUE EQUITY  \"A\" (USD) ACC","VBTC.AU":"Vaneck Bitcoin Etf","LU1323610961.USD":"UBS (LUX) EQUITY SICAV - LONG TERM THEMES (USD) \"P\" (USD) ACC","BTCW":"WisdomTree Bitcoin Fund","HODL":"VanEck Bitcoin ETF","LU0957791311.USD":"THREADNEEDLE (LUX) GLOBAL FOCUS \"ZU\" (USD) ACC","EZBC":"Franklin Bitcoin ETF","LU0823434740.USD":"BNP PARIBAS US GROWTH \"C\" (USD) INC","IBIT":"iShares Bitcoin Trust ETF","LU0289739343.SGD":"SUSTAINABLE GLOBAL THEMATIC PORTFOLIO \"A\" (SGD) ACC","LU1935043023.USD":"MANULIFE GF GLOBAL MULTI-ASSET DIVERSIFIED INCOME \"AA\" (USD) INC A","LU2265009873.SGD":"Eastspring Investments - Global Growth Equity AS SGD-H","BK4576":"AR","LU1629891620.HKD":"ALLIANZ INCOME AND GROWTH \"AMG2\" (H2-HKD) INC"},"translate_title":"Security firm: Cross-platform malware called 'ModStealer' can circumvent antivirus detection and target browser wallets","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"165523":1,"399994":1,"BITO":1,"BRRR":1,"BTCO":1,"BTCW":1,"DEFI":1,"EZBC":1,"FBTC":1,"GBTC":1,"HODL":1,"IBIT":1,"MSFT":1,"VBTC.AU":1},"content_text":"【安全公司：名为“ModStealer”的跨平台恶意软件可规避杀毒软件检测，并以浏览器钱包为攻击目标】金色财经报道，安全公司 Mosyle 披露，研究人员发现了一种新型恶意软件，它能够绕过杀毒软件检查，从 Windows、Linux 和 macOS 系统上的加密货币钱包窃取数据，这款被称为 ModStealer 的恶意软件，在披露时已经在主流杀毒引擎下潜伏了近一个月而未被发现，其传播方式是通过针对开发者的虚假招聘广告投放。 \nMosyle表示，通过虚假招聘广告进行传播是有意为之，因为目标是那些可能已经在使用 Node.js 环境的开发者。 \n区块链安全公司 Slowmist 的首席信息安全官 Shān Zhang表示：“ModStealer 能够避开主流杀毒软件的检测，对整个数字资产生态系统构成重大风险。与传统的窃取程序不同，ModStealer 的突出特点是支持多平台，并采用隐秘的‘零检测’执行链。”","kind":"live","is_publish_news":true,"is_publish_highlight":false,"is_publish_live":true,"is_publish_wemedia":null,"editions":null,"column":"","sentiment":"0","news_tag":"","news_rank":0,"symbols":[],"gpt_button":1,"need_auth":false,"code":"91000000","status":"200"}}}