• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Analysis of Phishing Attack Using Fake Zoom Links

user avatar

by Giorgi Kostiuk

a year ago

Recently, users reported phishing attacks using fake Zoom links, resulting in stolen crypto assets worth millions. SlowMist conducted an analysis of the incident, examining the attack methods and fund movements.

Phishing Link Analysis

Attackers used a domain similar to the legitimate Zoom domain to disguise their attack. Clicking the 'Launch Meeting' button initiated the download of malicious software instead of launching the Zoom client. The analysis revealed that attackers were using the Telegram API to monitor who clicked the download button.

Malware Analysis

The malware file was named 'ZoomApp_v.3.14.dmg' and tricked users into entering their system password. It executed a script that collected and sent data to attackers, allowing access to sensitive information like passwords and crypto wallet data.

Malicious Behavior Analysis

The analysis showed that the malicious code collected system, browser, and crypto wallet data, sending it to an attacker-controlled server in the Netherlands. Using MistTrack, it was discovered that hacker addresses received over $1 million, including ETH and other cryptocurrencies, later moved to various platforms.

Phishing attacks using Zoom links pose a significant security threat, combining social engineering and trojans. SlowMist Security Team advises users to verify meeting links carefully and use antivirus software to protect their data.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

XRP Faces Selling Pressure Below 140

chest

XRP struggles below the critical resistance level of 140 due to selling pressure and deteriorating liquidity conditions.

user avatarRajesh Kumar

Tether to Launch Stablecoin GELT in Partnership with Georgian Government

chest

Tether announced plans to issue a stablecoin called GELT in Georgia, supported by the government, to enhance the country's digital financial infrastructure.

user avatarLucas Weissmann

Surge in XRP Ledger Payment Counts Raises Questions

chest

A significant increase in XRP payments has been observed, prompting speculation about the reasons behind this rally.

user avatarFilippo Romano

Decline in Whale Activity on XRP Ledger Observed

chest

Recent reports indicate a significant drop in whale transactions on the XRP Ledger, suggesting a potential market compression phase.

user avatarEmily Carter

Perplexity Introduces Bumblebee to Enhance Developer Security

chest

Perplexity has launched Bumblebee, an innovative security tool designed to scan developer computers for infected software packages, malicious browser extensions, and compromised AI tool configurations without executing any code.

user avatarTomas Novak

Ripple's Strategic Investment in Squid Enhances XRP's Utility

chest

Ripple's investment in Squid aims to enhance XRP's utility as a cross-border payment asset.

user avatarMaya Lundqvist

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.