Slow Mist 23pds: MioLab targets cryptocurrency assets and hardware wallets

23pds, Chief Information Security Officer of SlowMist, stated in an article on X platform that MioLab is a macOS malware as a service platform active in Russian underground forums, providing C2 control, API integration, and customized attack capabilities for cybercrime gangs. Its main goal is to steal encrypted assets and provide dedicated attack modules for hardware wallets such as Ledger and Trezor. Through lightweight payloads and a fully functional web backend, attackers can efficiently steal sensitive browser data and encrypted wallet assets, and use highly customized social bait to bypass macOS security protection, achieving long-term covert control.