• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Analysis of Phishing Attack Using Fake Zoom Links

user avatar

by Giorgi Kostiuk

a year ago

Recently, users reported phishing attacks using fake Zoom links, resulting in stolen crypto assets worth millions. SlowMist conducted an analysis of the incident, examining the attack methods and fund movements.

Phishing Link Analysis

Attackers used a domain similar to the legitimate Zoom domain to disguise their attack. Clicking the 'Launch Meeting' button initiated the download of malicious software instead of launching the Zoom client. The analysis revealed that attackers were using the Telegram API to monitor who clicked the download button.

Malware Analysis

The malware file was named 'ZoomApp_v.3.14.dmg' and tricked users into entering their system password. It executed a script that collected and sent data to attackers, allowing access to sensitive information like passwords and crypto wallet data.

Malicious Behavior Analysis

The analysis showed that the malicious code collected system, browser, and crypto wallet data, sending it to an attacker-controlled server in the Netherlands. Using MistTrack, it was discovered that hacker addresses received over $1 million, including ETH and other cryptocurrencies, later moved to various platforms.

Phishing attacks using Zoom links pose a significant security threat, combining social engineering and trojans. SlowMist Security Team advises users to verify meeting links carefully and use antivirus software to protect their data.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Clawdbot AI Assistant Exposes Personal Data and API Keys

chest

Cybersecurity researchers warn that Clawdbot AI assistant may expose personal data and API keys due to security vulnerabilities.

user avatarJacob Williams

MultiversX Proposes Major Changes to EGLD Tokenomics

chest

MultiversX has introduced a governance proposal to remove the EGLD supply cap and implement tail inflation, igniting debate within the crypto community.

user avatarZainab Kamara

SUI Emerges as a Developer-Friendly Blockchain

chest

SUI is gaining traction for its speed and scalability, making it attractive for Web3 applications.

user avatarSon Min-ho

Five Amendments to XRP Ledger Set to Activate Soon

chest

Five amendments to the XRP Ledger are set to activate soon, focusing on AMM features, token escrows, and clawback functionality.

user avatarAyman Ben Youssef

Nick Cipher Expands Crypto Education with Guest Lectures at UC Davis and UC Berkeley

chest

Nick Cipher is set to deliver guest lectures on cryptocurrency at UC Davis and UC Berkeley in March 2026 to expand crypto education.

user avatarSatoshi Nakamura

Morpho's Role in Institutional DeFi Adoption

chest

Morpho is increasingly recognized as essential infrastructure for institutional strategies in decentralized finance, enhancing transparency and risk management.

user avatarTando Nkube

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.