Polylog
← Trends

Endpoint Malware Targets Crypto Keys Beyond Smart-Contract Exploits

Beyond on-chain contract exploits, key-harvesting malware targets private keys at the device and supply-chain level, opening a distinct and growing attack surface for crypto holders.

weakening · confidence 62 · +12 7d · Short term (next 30 days) · tracking since June 19, 2026 · updated July 7, 2026

Score history

Daily conviction score, 0 to 100. Higher means the thesis is more strongly corroborated.

Jul 6 · 64Jul 7 · 62

Now 62 · -2 since Jul 6 · ranged 62 to 64

Showing the last few days. Unlock full score history.

Why the conviction moved

  • Jul 6
    Strengthened +3

    Reporting on the 'PamStealer' macOS malware, disguised as a clipboard utility to steal passwords and drain wallets, reinforces the endpoint key-theft attack surface.

  • Jul 6
    Strengthened +5

    Researchers documented 'PamStealer,' macOS malware disguised as a clipboard tool that harvests passwords and drains wallets, underscoring a device-level attack surface distinct from smart-contract exploits.

  • Jul 6
    Strengthened +5

    Reported June crypto losses of ~$75.9 million were led by a $32 million private-key breach at Humanity Protocol and a $20 million Cardano wallet-software flaw, with access-control and key-theft failures overtaking smart-contract bugs for the year.

  • Jul 5
    Strengthened +5

    A private-key compromise at Humanity Protocol and a signing-code flaw at SecondFi drove eight-figure DeFi thefts, showing operational key security — not just smart-contract bugs — as a persistent attack surface.

Showing the last 2 days. Unlock the full record.

Source trail

  • Supporting · July 6, 2026

    Fake Mac App Shows How Malware Is Going After Crypto Keys on the Device

    Reporting on the 'PamStealer' macOS malware, disguised as a clipboard utility to steal passwords and drain wallets, reinforces the endpoint key-theft attack surface.

    Goku Crypto News
  • Supporting · July 6, 2026

    Fake Mac App Shows How Malware Is Going After Crypto Keys on the Device

    Researchers documented 'PamStealer,' macOS malware disguised as a clipboard tool that harvests passwords and drains wallets, underscoring a device-level attack surface distinct from smart-contract exploits.

    Goku Crypto News

Unlock full source trail, score history, and daily updates.

12 more sources in the full trail.

Unlock Trends

Affected regions & assets

RegionsGlobal