Recently, phishing attacks targeting crypto engineers and Google users have been on the rise, employing modern technology and psychological tactics.
Phishing Attack on Kenny Li of Manta Network
Manta Network co-founder Kenny Li was targeted by a phishing attack utilizing a realistic Zoom video to mislead him. In a post on X, he described how everything in the call seemed authentic, including the video of an acquaintance, but there was no sound. Li noted that a suspicious prompt urging him to update Zoom led him to exit the call. After trying to verify the identity of the participant through Telegram, the impersonator deleted all messages and blocked him. Li suspects that the North Korean state-backed Lazarus Group may be behind the attack.
Targeted Campaign Against Crypto Developers
North Korean hackers linked to a $1.4 billion exploit have started targeting cryptocurrency developers through fake job offers. According to Hacker News, scammers present themselves as recruiters on platforms like LinkedIn, sending a document with supposed assignments that conceal malicious code. Given the methods used by hackers, they manage to create plausible profiles and resumes to lure developers.
Scam Using Fake Google Alerts
Nick Johnson, founder of Ethereum Name Service (ENS), issued a warning about a sophisticated phishing attack impersonating Google. Scammers send fake alerts claiming the user's data is shared with law enforcement. This scam misleads users into entering pages created on a Google domain, which lends credibility. Google confirmed it is working on security measures to eliminate vulnerabilities.
The situation with phishing attacks in the crypto sector and among Google users remains tense. Cybersecurity experts are urging caution and attentiveness to suspicious requests.