New Phishing Scam Targets Crypto Users with Fake Zoom Links

by Giorgi Kostiuk

a year ago

SlowMist has highlighted a new phishing scam targeting cryptocurrency users, disguised as fake Zoom meetings to distribute malware that steals sensitive data.

Extent of the Phishing Attack

According to SlowMist, the attackers used a sophisticated phishing technique involving a domain that mimicked the legitimate Zoom domain. The phishing website 'app[.]us4zoom[.]us' closely resembled the genuine Zoom website interface.

⚠️ Beware of phishing attacks disguised as Zoom meeting links!

Data Theft Methods

Victims are prompted to click a 'Launch Meeting' button, expecting to start a Zoom session. Instead, it initiates the download of a malicious file 'ZoomApp_v.3.14.dmg,' which, once executed, requests the user's system password and begins collecting sensitive information, such as browser cookies and cryptocurrency wallet credentials.

Movement of Stolen Funds

Using the MistTrack tool, SlowMist investigated the movement of stolen funds. The hacker's address, identified as 0x9fd15727f43ebffd0af6fecf6e01a810348ee6ac, has received over $1 million in cryptocurrency. These funds were transferred through several platforms, including Binance and Gate.io, and ultimately converted into other cryptocurrencies.

This new attack highlights the importance of being cautious when using online platforms and services. Users must remain vigilant to avoid falling victim to such scams.

Rewards

More rewards

Discover enhanced rewards on our social media.

Other news

New Escrow Service on XRP Ledger Announced

XRPL validator Vet has announced a new escrow service that could soon launch on the XRP Ledger, enhancing benefits for token holders as Ripple continues to expand its network.

Maria Fernandez3 hours ago

XRP Treasury Firm Reports 8X Growth in Tokenized Treasuries

Ripple-backed firm Evernorth reports an 8x growth in tokenized US Treasuries on the XRP Ledger, increasing from $50 million to $418 million in one year.