Mitrade Insights is dedicated to providing investors with rich, timely and most valuable financial information to help investors grasp the market situation and find timely trading opportunities.

2021

Best News & Analysis Provider

FxDailyInfo

2022

Best Forex Educational Resources Global

International Business Magazine

Insights

News

Cryptocurrencies

Russian hackers spread GrassCall malware to drain crypto wallets via fake job postings

Source Cryptopolitan

As part of a social engineering campaign, hackers are reportedly sending fake job offers to job seekers in the web3 space with malicious intentions. A dubious meeting app called ‘GrassCall’ was recently used to spread malware that drains the user’s crypto wallets.

The fraud is allegedly carried out by a Russian hacker team known as “Crazy Evil.” This group of cybercriminals specializes in social engineering attacks that trick users into installing infected software on their Mac and Windows PCs.

Crazy Evil commonly targets people in the crypto space, where they promote fake job opportunities and games via various social media websites. A cybersecurity company, Recorded Future, said that it has connected “over ten active scams on social media” to Crazy Evil.

Hackers posted fake jobs for a sham company called ChainSeeker.io

More recently, reports of another fake scam company surfaced. This time, the company was called ChainSeeker.io, according to an X user.

According to the reports, threat actors created fake company profiles for ChainSeeker.io on LinkedIn, where they have been sending out premium job listings. Other popular job boards where the fake listing was spotted include CryptoJobList, and WellFound.

Russian hackers spread GrassCall malware to drain crypto wallets via fake job postings — Job listings by ChainSeeker (Source: choykwok on X)

All those who applied for the jobs were contacted via email, which instructed them to contact the company’s marketing chief on Telegram.

The chief would then request the user download a video calling app named ‘GrassCall’ from a now-deleted website. Depending on the user’s browser, the website would offer them a Mac or Windows client.

After downloading the app, users are asked to enter a code shared by the CMO in the Telegram chat. The website then either provides a Mac “GrassCall_v.6.10.dmg” [VirusTotal] client or a Windows “GrassCall.exe” client [VirusTotal] client. Once the correct code is entered, both apps install an info stealer, like Rhadamanthys (on Windows), remote access trojans (RATs), or other malware. On Macs, the Atomic (AMOS) Stealer malware gets installed.

Once installed, the virus collects wallet addresses, authentication cookies, and passwords stored in the online browser and Apple Keychain. The stolen information gets uploaded to a server and gets posted on Telegram channels owned by the malicious actors.

If a wallet is found, the hackers use a brute force method to crack the passwords and drain the user’s assets. From these assets, the hackers pay out the user who made the unsuspecting victim download the malicious app.

According to publicly released payment information, Crazy Evil members apparently earn tens of thousands of dollars per victim.

Various users have recounted their experiences after applying to such scam job postings. Cristian Ghita, a LinkedIn user, posted on the platform, “It looked legit from almost all angles. Even the video-conferencing tool had an almost believable online presence.”

The hackers have reportedly moved on to a social engineering new campaign

Cybersecurity researcher, Gonjxa, has also identified dubious meeting apps called Gatherum, and VibeCall. Gatherum was used in previous campaign by a subgroup of Crazy Evil called “Kevland.” Interestingly, both apps’ branding is pretty much identical to GrassCall. Now, the scammers have moved on to their new campaign with VibeCall, which is currently being circulated among Web3 job seekers.

In response to the attention this attack received online, Chain Seeker’s job postings have now reportedly been taken down by most of the job boards.

LinkedIn search results do not return any job posts linked to Chainseeker.io anymore. At the same time, its website has been flagged in community databases for being suspicious. Furthermore, LinkedIn accounts of the company’s employees have all been deleted. Users who have already interacted with scammers or installed suspicious apps on their devices are advised to change their passwords and authentication tokens and move their crypto to fresh wallets as a precautionary measure. It is also recommended to turn on two-factor authentication via an authentication app on all websites that support this feature.

Cryptopolitan Academy: Want to grow your money in 2025? Learn how to do it with DeFi in our upcoming webclass. Save Your Spot

Disclaimer: For information purposes only. Past performance is not indicative of future results.

Recommended Articles

Why a Quiet 2025 Signals a Massive 2026 Crypto Bull Run: Bitwise CIO Explains Bitwise's Matt Hougan Predicts a Crypto Boom in 2026 Amid Current Market Struggles

Author Mitrade

Nov 13, Thu

Bitwise's Matt Hougan Predicts a Crypto Boom in 2026 Amid Current Market Struggles

Ethereum slides 5% as bears lean on $3,500 cap and put $3,150 support in focus Ethereum (ETH) drops more than 5% after a failed push above $3,550, with price sliding to $3,153 and now holding below $3,350, the 100-hour SMA and a bearish trend line at $3,500; unless bulls reclaim the $3,350–$3,500 zone, the short-term bias stays bearish and a clean break under $3,150 could expose $3,050, $3,000 and even the $2,880–$2,850 support area.

Author Mitrade

Nov 14, Fri

Ethereum (ETH) drops more than 5% after a failed push above $3,550, with price sliding to $3,153 and now holding below $3,350, the 100-hour SMA and a bearish trend line at $3,500; unless bulls reclaim the $3,350–$3,500 zone, the short-term bias stays bearish and a clean break under $3,150 could expose $3,050, $3,000 and even the $2,880–$2,850 support area.

Gold Posts Biggest Weekly Gain in a Month as US Data Delays Fuel Uncertainty Gold climbed higher on Friday, marking its strongest weekly performance in a month, as traders weighed the impact of a data backlog following the end of the US government's extended shutdown. Silver also moved upward.

Author Mitrade

Nov 14, Fri

Gold climbed higher on Friday, marking its strongest weekly performance in a month, as traders weighed the impact of a data backlog following the end of the US government's extended shutdown. Silver also moved upward.

Top 3 Price Prediction: Bitcoin, Ethereum, Ripple – BTC, ETH, and XRP flash deeper downside risks as market selloff intensifies Bitcoin (BTC), Ethereum (ETH) and Ripple (XRP) trade in red on Friday after correcting more than 5%, 10% and 2%, respectively, so far this week.

Author FXStreet

Nov 14, Fri

Bitcoin (BTC), Ethereum (ETH) and Ripple (XRP) trade in red on Friday after correcting more than 5%, 10% and 2%, respectively, so far this week.

Bitcoin briefly loses 2025 gains as crypto plunges over the weekend.Bitcoin experienced a sharp decline this weekend, briefly erasing its 2025 gains and dipping below its year-opening value of $93,507. The cryptocurrency fell to a low of $93,029 on Sunday, representing a 25% drop from its all-time high in October. Although it has rebounded slightly to around $94,209, the pressures on the market remain significant. The downturn occurred despite the reopening of the U.S. government on Thursday, which many had hoped would provide essential support for crypto markets. This year initially appeared promising for cryptocurrencies, particularly after the inauguration of President Donald Trump, who has established the most pro-crypto administration thus far. However, ongoing political tensions—including Trump's tariff strategies and the recent government shutdown, lasting a historic 43 days—have contributed to several rapid price pullbacks for Bitcoin throughout the year. Market dynamics are also being influenced by Bitcoin whales—investors holding large amounts of Bitcoin—who have been offloading portions of their assets, consequently stalling price rallies even as positive regulatory developments emerge. Despite these sell-offs, analysts from Glassnode argue that this behavior aligns with typical patterns seen among long-term investors during the concluding stages of bull markets, suggesting it is not indicative of a mass exodus. Notably, Bitcoin is not alone in its struggles, as Ethereum and Solana have also recorded declines of 7.95% and 28.3%, respectively, since the start of the year, while numerous altcoins have faced even steeper losses. Looking ahead, questions linger regarding the viability of the four-year cycle thesis, particularly given the increasing institutional support and regulatory frameworks now in place in the crypto landscape. Matt Hougan, chief investment officer at Bitwise, remains optimistic, suggesting a potential Bitcoin resurgence in 2026 driven by the “debasement trade” thesis and a broader trend toward increased adoption of stablecoins, tokenization, and decentralized finance. Hougan emphasized the soundness of the underlying fundamentals, pointing to a positive outlook for the sector in the longer term.

Author Mitrade

1 hour ago

Bitcoin experienced a sharp decline this weekend, briefly erasing its 2025 gains and dipping below its year-opening value of $93,507. The cryptocurrency fell to a low of $93,029 on Sunday, representing a 25% drop from its all-time high in October. Although it has rebounded slightly to around $94,209, the pressures on the market remain significant. The downturn occurred despite the reopening of the U.S. government on Thursday, which many had hoped would provide essential support for crypto markets. This year initially appeared promising for cryptocurrencies, particularly after the inauguration of President Donald Trump, who has established the most pro-crypto administration thus far. However, ongoing political tensions—including Trump's tariff strategies and the recent government shutdown, lasting a historic 43 days—have contributed to several rapid price pullbacks for Bitcoin throughout the year. Market dynamics are also being influenced by Bitcoin whales—investors holding large amounts of Bitcoin—who have been offloading portions of their assets, consequently stalling price rallies even as positive regulatory developments emerge. Despite these sell-offs, analysts from Glassnode argue that this behavior aligns with typical patterns seen among long-term investors during the concluding stages of bull markets, suggesting it is not indicative of a mass exodus. Notably, Bitcoin is not alone in its struggles, as Ethereum and Solana have also recorded declines of 7.95% and 28.3%, respectively, since the start of the year, while numerous altcoins have faced even steeper losses. Looking ahead, questions linger regarding the viability of the four-year cycle thesis, particularly given the increasing institutional support and regulatory frameworks now in place in the crypto landscape. Matt Hougan, chief investment officer at Bitwise, remains optimistic, suggesting a potential Bitcoin resurgence in 2026 driven by the “debasement trade” thesis and a broader trend toward increased adoption of stablecoins, tokenization, and decentralized finance. Hougan emphasized the soundness of the underlying fundamentals, pointing to a positive outlook for the sector in the longer term.

Popular Symbols