• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Analysis of Phishing Attack Using Fake Zoom Links

user avatar

by Giorgi Kostiuk

a year ago

Recently, users reported phishing attacks using fake Zoom links, resulting in stolen crypto assets worth millions. SlowMist conducted an analysis of the incident, examining the attack methods and fund movements.

Phishing Link Analysis

Attackers used a domain similar to the legitimate Zoom domain to disguise their attack. Clicking the 'Launch Meeting' button initiated the download of malicious software instead of launching the Zoom client. The analysis revealed that attackers were using the Telegram API to monitor who clicked the download button.

Malware Analysis

The malware file was named 'ZoomApp_v.3.14.dmg' and tricked users into entering their system password. It executed a script that collected and sent data to attackers, allowing access to sensitive information like passwords and crypto wallet data.

Malicious Behavior Analysis

The analysis showed that the malicious code collected system, browser, and crypto wallet data, sending it to an attacker-controlled server in the Netherlands. Using MistTrack, it was discovered that hacker addresses received over $1 million, including ETH and other cryptocurrencies, later moved to various platforms.

Phishing attacks using Zoom links pose a significant security threat, combining social engineering and trojans. SlowMist Security Team advises users to verify meeting links carefully and use antivirus software to protect their data.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Salesforce's Slackbot AI Agent Set to Transform Enterprise Software Landscape

chest

Salesforce's new Slackbot AI agent aims to integrate advanced AI capabilities into its communication platform, enhancing user experience and reflecting a trend in enterprise software towards AI integration.

user avatarBayarjavkhlan Ganbaatar

Ethereum Classic Price Prediction for 2025-2030: A Comprehensive Analysis

chest

This analysis provides a detailed price prediction for Ethereum Classic (ETC) from 2025 to 2030, focusing on its unique value propositions and market dynamics.

user avatarElias Mukuru

Salesforce Unveils New Slackbot AI Agent for Enterprises

chest

Salesforce has transformed its Slackbot into a generative AI agent, enhancing its capabilities for enterprise users.

user avatarMohamed Farouk

Ethereum Network Experiences Unprecedented Surge in Activity

chest

Ethereum's main network is experiencing a significant increase in user engagement and transaction throughput, reaching historic levels.

user avatarDiego Alvarez

Concerns Raised Over Politically Tied Tokens

chest

Concerns raised by Cardano founder Charles Hoskinson regarding the involvement of political figures in meme coin launches and its impact on investor trust.

user avatarGustavo Mendoza

Smart Cashtags Set to Revolutionize Financial Engagement on X

chest

The upcoming Smart Cashtags feature on X will transform how users engage with financial information by allowing them to access real-time data on stocks and cryptocurrencies interactively.

user avatarKenji Takahashi

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.