Sophisticated Scam Targets Crypto Users with Fake Influencers and Malicious Bots
A new warning from web3 security firm ScamSniffer sheds light on a sophisticated scam targeting cryptocurrency users. Bad actors are using a combination of fake X accounts and malicious Telegram bots to steal users’ crypto assets.
How the Scam Works
The scam starts with scammers creating fake X accounts impersonating popular cryptocurrency influencers. These fake accounts promote Telegram groups that claim to offer exclusive investment advice. To make the scam appear legitimate, the scammers promote these groups under posts of the influencers they are imitating.
When unsuspecting users join the group through the invite link, they are asked to verify themselves using a Telegram verification bot named “OfficialSafeguardBot.” This bot creates a sense of urgency by giving users very little time to complete the captcha, pressuring them to act quickly.
The Malicious Payload
During the verification process, the bot injects malicious PowerShell code into the victim’s clipboard. Users are then tricked into executing this code on Windows, believing it is a necessary step to complete the verification process. This malicious code has been successful in bypassing many antivirus programs, with only VirusTotal flagging it as harmful.
Protecting Yourself
To safeguard against such scams, ScamSniffer recommends using hardware wallets, avoiding executing unknown commands, and refraining from installing unverified software. These precautions can help prevent falling victim to cryptocurrency-stealing malware.
Rise in Malware Attacks
These scams come amidst a surge in malware attacks targeting cryptocurrency users. Threat actors are increasingly using sophisticated tactics to drain crypto assets from unsuspecting victims. It is crucial for users to stay vigilant and take necessary precautions to protect their funds.
As the cryptocurrency market continues to grow, scammers are finding new ways to exploit users. By staying informed and following best security practices, users can reduce the risk of falling prey to such malicious schemes.
Recent Incidents
Recent incidents, such as the Realst malware infiltrating systems through fake applications and the Radiant Capital hack involving compromised developer systems, highlight the need for heightened security measures in the crypto space. Staying informed and cautious is key to safeguarding your assets in the digital asset landscape.