CCT - Crypto Currency Tracker logo CCT - Crypto Currency Tracker logo
Cryptopolitan 2024-12-24 10:26:52

Kaspersky: Top scammers target digital thieves with fake crypto wallet keys to steal funds

Cybersecurity firm Kaspersky has uncovered a unique scam targeting crypto thieves. The scheme lures would-be opportunists with seemingly loaded crypto wallets, only to siphon their funds when they attempt to access the bait. This inventive ploy demonstrates the growing sophistication of cybercriminals in the digital asset space. According to Kaspersky, top scammers are posing as naïve crypto users by publicly sharing seed phrases, the keys required to access crypto wallets, in YouTube comments. These comments, posted by newly created accounts, often include a plea for assistance in transferring funds from a wallet supposedly holding significant assets. “Scammers have invented a new trick…They post crypto wallet seed phrases in YouTube comments using newly created accounts,” Kaspersky analyst Mikhail Sytnik detailed in a recent blog post . There’s no honor among thieves – How the private key scam works One wallet observed by Kaspersky contained approximately $8,000 in USDT on the Tron network. To access these funds, a thief would first need to send TRX, the blockchain’s native token, to cover network fees. Scam trades: Source – Tron Network The scheme primarily preys on individuals looking to exploit the supposedly “foolish” mistake of others. Once inside the bait wallet, these digital thieves find it filled with USDT, a TRC20 token tied to the US dollar. Since the wallet lacks sufficient TRX for withdrawals, they are prompted to send funds from their own wallets. This action triggers the “siphon,” diverting the TRX to the scammer’s address. Scam trades: Source – Tron Network The scammers have rigged the system, and as soon as the TRX is sent, it is immediately redirected to a separate wallet controlled by the attackers, leaving the thief empty-handed. Kaspersky’s analysis likened the scammers to digital Robin Hoods, targeting unethical actors in the crypto space. However, the ultimate victims remain those who let their greed outweigh their caution. The security company is urging crypto users to be cautious of the repeated use of identical seed phrases across multiple comments. This could be a well-planned and coordinated operation to steal their assets. Scamming campaigns targeting crypto users Kaspersky’s findings extend beyond seed phrase scams. In August, the company’s Global Emergency Response Team (GERT) has identified a larger fraud campaign aimed at Windows and macOS users worldwide. This operation employs polished fake websites to mimic legitimate services, such as crypto platforms, online role-playing games, and AI tools. These sophisticated imitations are designed to lure victims into sharing sensitive information or downloading malware. “The correlation between different parts of this campaign and their shared infrastructure suggests a well-organized operation, possibly linked to a single actor or group with specific financial motives,” stated Ayman Shaaban, Head of Incident Response at Kaspersky’s GERT. Dubbed “Tusk,” Kaspersky’s investigation revealed that the campaign includes various sub-operations targeting crypto, gaming, and AI-related topics. The malicious infrastructure also extends to 16 other themes, either retired sub-campaigns or new ones yet to be launched. Strings of malicious code uncovered during the investigation showed communication between the attackers’ servers in Russian, with references to the term “Mammoth” (“Мамонт”), slang for “victim” among Russian-speaking threat actors. This linguistic clue contributed to the campaign’s name. The Tusk campaign employs info-stealer malware such as Danabot and Stealc, as well as clipboard-monitoring clippers, some of which are open-source variants written in Go. Info-stealers extract credentials, wallet details, and other sensitive information, while clippers intercept cryptocurrency wallet addresses copied to clipboards, replacing them with malicious addresses controlled by the attackers. A Step-By-Step System To Launching Your Web3 Career and Landing High-Paying Crypto Jobs in 90 Days.

면책 조항 읽기 : 본 웹 사이트, 하이퍼 링크 사이트, 관련 응용 프로그램, 포럼, 블로그, 소셜 미디어 계정 및 기타 플랫폼 (이하 "사이트")에 제공된 모든 콘텐츠는 제 3 자 출처에서 구입 한 일반적인 정보 용입니다. 우리는 정확성과 업데이트 성을 포함하여 우리의 콘텐츠와 관련하여 어떠한 종류의 보증도하지 않습니다. 우리가 제공하는 컨텐츠의 어떤 부분도 금융 조언, 법률 자문 또는 기타 용도에 대한 귀하의 특정 신뢰를위한 다른 형태의 조언을 구성하지 않습니다. 당사 콘텐츠의 사용 또는 의존은 전적으로 귀하의 책임과 재량에 달려 있습니다. 당신은 그들에게 의존하기 전에 우리 자신의 연구를 수행하고, 검토하고, 분석하고, 검증해야합니다. 거래는 큰 손실로 이어질 수있는 매우 위험한 활동이므로 결정을 내리기 전에 재무 고문에게 문의하십시오. 본 사이트의 어떠한 콘텐츠도 모집 또는 제공을 목적으로하지 않습니다.