• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Analysis of Phishing Attack Using Fake Zoom Links

user avatar

by Giorgi Kostiuk

a year ago

Recently, users reported phishing attacks using fake Zoom links, resulting in stolen crypto assets worth millions. SlowMist conducted an analysis of the incident, examining the attack methods and fund movements.

Phishing Link Analysis

Attackers used a domain similar to the legitimate Zoom domain to disguise their attack. Clicking the 'Launch Meeting' button initiated the download of malicious software instead of launching the Zoom client. The analysis revealed that attackers were using the Telegram API to monitor who clicked the download button.

Malware Analysis

The malware file was named 'ZoomApp_v.3.14.dmg' and tricked users into entering their system password. It executed a script that collected and sent data to attackers, allowing access to sensitive information like passwords and crypto wallet data.

Malicious Behavior Analysis

The analysis showed that the malicious code collected system, browser, and crypto wallet data, sending it to an attacker-controlled server in the Netherlands. Using MistTrack, it was discovered that hacker addresses received over $1 million, including ETH and other cryptocurrencies, later moved to various platforms.

Phishing attacks using Zoom links pose a significant security threat, combining social engineering and trojans. SlowMist Security Team advises users to verify meeting links carefully and use antivirus software to protect their data.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Senator Lummis Issues Urgent Warning for Software Developers Amid CLARITY Act Delays

chest

Senator Cynthia Lummis warns software developers about the risks they face without the CLARITY Act, which aims to provide a clearer regulatory framework for the crypto industry.

user avatarAyman Ben Youssef

Bitcoin's Security Model Faces Quantum Computing Risks

chest

New data reveals potential vulnerabilities in Bitcoin's security model due to quantum computing advancements.

user avatarTando Nkube

Ripple Seeks Regulatory Clarity from SEC on Stablecoins and Nonsecurities

chest

Ripple has submitted a follow-up letter to the SEC Crypto Task Force seeking clearer regulations for payment stablecoins and nonsecurities.

user avatarNguyen Van Long

Satoshiera Miner Transfers $203 Million in Bitcoin to OTC Desks

chest

A Satoshiera Bitcoin miner transferred 2,650 BTC, valued at around $203 million, to major OTC trading desks.

user avatarJesper Sørensen

BlackRock-Linked Bitcoin Wallets Experience Major Outflows

chest

BlackRock's iShares Bitcoin Trust experienced significant outflows, with wallets linked to the firm selling over $1 billion in Bitcoin last week.

user avatarSatoshi Nakamura

Robinhood Stock Sees Minor Increase Despite Year-to-Date Decline

chest

Robinhood's stock saw a minor increase of nearly 2% after the announcement of new AI trading agents, but it has declined 36% year-to-date, raising concerns about its performance.

user avatarLucas Weissmann

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.