How You Lose Your Funds

The malware uses two sophisticated methods:

- Clipboard Hijacking: When you paste a wallet address, it stealthily swaps it with an attacker's address that is visually similar to the real one, making it extremely hard to spot the difference.

- Transaction Interception: It directly hooks into your wallet's functions. When you go to sign a transaction, it changes the recipient's address in the background before the confirmation prompt even appears.

How to Protect Yourself

- This malware targets BTC, ETH, SOL, TRX, LTC, and BCH.

- Your final confirmation screen is your last line of defense.

- You must meticulously verify every single character of the recipient address in your wallet app or on your hardware wallet screen before approving any transaction.

El malware utiliza dos métodos sofisticados:

- Secuestro del portapapeles: cuando pegas la dirección de una billetera, la intercambia sigilosamente con la dirección de un atacante que es visualmente similar a la real, lo que hace que sea extremadamente difícil detectar la diferencia.

Interceptación de transacciones: Intercepta directamente las funciones de tu billetera. Al firmar una transacción, cambia la dirección del destinatario en segundo plano incluso antes de que aparezca la solicitud de confirmación.

Cómo protegerse:

- Este malware apunta a BTC, ETH, SOL, TRX, LTC y BCH.

- La pantalla de confirmación final es su última línea de defensa.

- Debe verificar meticulosamente cada carácter de la dirección del destinatario en su aplicación de billetera o en la pantalla de su billetera de hardware antes de aprobar cualquier transacción.

https://store.blockstream.com/?code=KgD7dk4Ejmt6

Check out the official announcements from Blockstream and Jade:

.

https://x.com/BlockstreamJade/status/1965147418242269232

.

https://x.com/Blockstream/status/1965160059908022319

.

https://x.com/Blockstream/status/1965162320625385897

The Blockstream app and the Jade hardware wallet are NOT affected; the app does not use JavaScript environments or NPM packages. Instead, it is built with Swift (iOS), Kotlin (Android), and C++ with QML (desktop/Qt), completely avoiding this vulnerability that affects packages with billions of downloads and that can swap crypto addresses to steal funds. This means that users' funds remain completely safe.

Jade is the Bitcoin-focused hardware wallet emphasizing transparency and isolation, compatible with apps like Blockstream Green for air-gapped transactions via QR codes.

Fully open-source code/hardware for community auditing, true air-gapped operation (no USB/Bluetooth for signing), and native Liquid network integration for sidechain assets like L-BTC/USDt.

Liquid is a federated Bitcoin sidechain second-layer solution designed for fast and private settlements, using confidential transactions to hide amounts and assets(However, the Blockstream Green Wallet has the option to route using Tor), and enabling the issuance of tokens. Unlike Lightning, it is not focused on instant micropayments, but rather on safer and more efficient movement of larger values.