Latest news with #WindowsPowerShell
Straits Times
05-05-2025
- Straits Times
Beware of TradingView YouTube channels giving false instructions that can steal crypto wallet
The police are warning members of the public about a fake TradingView YouTube channel. The channel deceives users into executing malicious scripts as part of its instructions for the installation of the TradingView application, resulting in cryptocurrency wallets being compromised. TradingView is a legitimate online platform used to chart and analyse financial markets, including stocks, forex and cryptocurrencies. It is downloadable as a desktop and mobile application via its official website. Victims came across videos from the fake channel with instructions to install a purportedly official TradingView application. As part of the installation process, victims were directed to download and execute Windows PowerShell scripts. However, the PowerShell command was a malicious code that compromised the victims' cryptocurrency wallets. Although the download appeared unsuccessful, a remote access trojan (RAT) was actually installed onto the victims' devices upon running the command. This allowed scammers to access the victims' devices, resulting in the compromise of their cryptocurrency wallets. Members of the public are advised to adopt the following precautionary measures to protect themselves: a)Beware of fake/phishing websites: Avoid running unknown commands, especially from unfamiliar sources, clicking on unsolicited links or downloading attachments from unknown sources. Always verify the links with official sources to ensure you are accessing legitimate cryptocurrency platforms and only download applications from official platforms (e.g. TradingView's website and mobile apps from the official Apple app store or Google Play store). Be wary of fake social media accounts that impersonate official channels and of cryptocurrency opportunities that require upfront cryptocurrency payments, or sound too good to be true. If in doubt, avoid sharing the content with others and verify the information with trusted sources. b) Use secure wallets: You should use secure wallets such as hardware wallets to store your cryptocurrencies offline as they are less vulnerable to online attacks. If you are required to perform frequent cryptocurrency transactions, use software wallets from reputable exchanges and ensure that they are updated with the latest security patches. You are advised to enable automatic updates, if available, or regularly check the exchange platform for new updates and install them immediately when available. c) Use strong passwords and enable two-factor authentication (2FA): You should set strong passwords for your wallets and online accounts. Do not share your private keys, recovery or seed phrases with anyone, and store them in physical form in a secure location. Always enable 2FA for cryptocurrency exchange accounts, wallets, and other related services. d) Monitor and review your accounts regularly: Regularly check your wallets and accounts for unauthorised transactions. Enable account activity notifications if they are available on the platform. Regularly review and revoke the use of high allowances by using blockchain explorers or wallet interfaces. e) Stay updated and informed: Keep up to date with the latest security threats and best practices in cryptocurrency security through official and trusted sources. If you are or suspect that you are a victim of cryptocurrency-related crimes, you are advised to do the following immediately: a) Contact your cryptocurrency exchange to halt further transactions or freeze your account, if possible. b) Review and revoke any suspicious token approvals using applicable wallet interfaces. c) If a wallet's seed phrase is compromised, transfer all remaining cryptocurrencies in the compromised wallet to another wallet immediately. d) Report the incident to the police. You may also report any fraudulent cryptocurrency phishing websites to the Cyber Security Agency of Singapore's SingCERT at singcert@ or via the incident reporting form at . In addition, you may also report the incident to security@ and support@ If you have any information relating to such crimes or if you are in doubt, please call the police hotline at 1800-255-0000, or submit it online at witness. All information will be kept strictly confidential. If you require urgent police assistance, please dial '999'. If you are unsure if something is a scam, call the 24/7 ScamShield helpline at 1799 or download the ScamShield application to check, detect and block scams. For more information on scams, visit Click here to contribute a story or submit it to our WhatsApp Get more of Stomp's latest updates by following us on: Share this article Show Comments
Straits Times
02-05-2025
- Business
- Straits Times
Fake TradingView videos target victims' crypto wallets, authorities warn
The authentic channel (left) can be distinguished from the fake version (right) by the absence of spacing in its name. PHOTO: SINGAPORE POLICE FORCE, CYBER SECURITY AGENCY OF SINGAPORE SINGAPORE - Several victims here had their cryptocurrency wallets compromised after falling prey to a fake TradingView YouTube channel which prompted users to download and execute malicious scripts, the authorities said. TradingView is a legitimate online platform used to chart and analyse financial markets, including stocks, forex and cryptocurrencies. It is downloadable as a desktop and mobile app. The police and Cyber Security Agency of Singapore (CSA) said in a joint statement on May 2 that the victims came across videos on the fake YouTube channel with instructions to install the purported official TradingView app . They were directed to download and execute Windows PowerShell scripts that were actually malicious code. Upon running the command, the victims unwittingly installed a Remote Access Trojan onto their devices. The malware allowed scammers access to the victims' devices, compromising their crypto wallets. Members of the public are advised to avoid executing unfamiliar commands from unknown sources, said the police and CSA. People who suspect they have fallen victim to cryptocurrency-related crimes should promptly contact their exchange to halt transactions or freeze their account. If a crypto wallet has been compromised, they should transfer all remaining cryptocurrencies in the compromised wallet to another wallet immediately. Victims were directed to download and execute Windows PowerShell scripts that were actually malicious code. PHOTO: SINGAPORE POLICE FORCE, CYBER SECURITY AGENCY OF SINGAPORE Victims may report the incident to the police, or through the incident reporting form accessible at Fraudulent cryptocurrency phishing websites may be reported to CSA's SingCERT at singcert@ Those who suspect they have been targeted in the fake TradingView scam may alert the company at security@ and support@ For more information on scams, visit Join ST's WhatsApp Channel and get the latest news and must-reads.
AsiaOne
02-05-2025
- AsiaOne
Beware of fake YouTube channel deceiving users into installing malicious scripts: Police and CSA, Singapore News
Members of the public are advised to be wary of a fake YouTube channel impersonating a trading platform, with videos aimed at deceiving users into executing malicious scripts that compromise cryptocurrency wallets. This was shared by the Singapore Police Force and the Cyber Security Agency of Singapore (CSA) in a joint media statement on Friday (May 2). According to the statement, the fake YouTube channel, which bears the name and logo of trading platform TradingView, provided instructions for users to install a purportedly official application. TradingView is a legitimate online platform used to chart and analyse financial markets, including stocks, forex and cryptocurrencies. It is downloadable as a desktop and mobile application via its official website. The statement added that victims of the scam channel were directed to download and execute Windows PowerShell scripts containing a malicious PowerShell command. Upon running the command, a Remote Access Trojan (RAT) was installed onto the victims' devices, compromising their cryptocurrency wallets. It is not clear from the statement how many users had fallen prey to the ruse. According to screenshots provided by the police, the fake TradingView channel which was discovered contained slight irregularities to its name and URL. The channel has since been blocked on YouTube. Precautionary measures The authorities reminded members of the public to avoid running unknown commands, clicking on unsolicited links or downloading attachments from unfamiliar sources. They are also advised to use secure wallets to store cryptocurrencies offline, use strong passwords and enable two-factor authentication, the media statement noted. It added that members of the public should regularly check their wallets for unauthorised transactions and stay updated on the latest security threats. Those who suspect that they have fallen victim to cryptocurrency-related crimes should halt further transactions or freeze their accounts and report these incidents to the police, said the statement. [[nid:715450]]
