A new social engineering campaign targets crypto users by exploiting the Obsidian note-taking app to deploy malware, with PHANTOMPULSE acting as a remote access trojan once third-party plugins are enabled.

Attack infrastructure avoids centralized command servers, using wallet-associated on-chain information to issue directives, which helps maintain resilience against takedowns.

Elastic Security Labs notes that the intrusion was blocked, but warns legitimate tools can become attack vectors; organizations should enforce strict app-level plugin policies to defend against similar threats.

High-value losses have been reported, including more than $3 million from a single victim and $420,000 from musician Garrett Dutton, underscoring the risk to wallet security and seed phrases.

Context notes that blockchain transactions are irreversible, reinforcing why attackers target crypto users and emphasizing the lasting impact of breaches.

Apple reported removing or rejecting over 17,000 deceptive apps in 2024, highlighting ongoing policing challenges in crypto app ecosystems.

The article carries standard third-party disclaimer language and advises readers to conduct their own research before making decisions.

Crypto security implications call for stronger wallet protections, better platform governance, and increased user awareness to defend against malware, seed-phrase theft, and blockchain-based C2.

The incident underscores the ongoing risk to crypto users, with wallet compromises totaling billions in theft in recent years, and stresses vigilant security practices.

The campaign reflects broader cryptocurrency threats, noting rises in 2025 with significant wallet losses and showing how legitimate apps can become attack frameworks via trusted plugin ecosystems.

Crypto platforms remain high-value targets due to irreversible transactions and asset holdings, reinforcing the need for robust security measures.

Separately, Apple removed a fake Ledger Live app after more than 50 victims lost about $9.5 million, with attackers using bait-and-switch to harvest seed phrases.