Phishing meets malware: new tactics drain crypto wallets

21 January 2025 , 17:16
558     0
Phishing meets malware: new tactics drain crypto wallets
Phishing meets malware: new tactics drain crypto wallets

Sophisticated social engineering and malware tactics hike crypto phishing scams on social media.

A phishing attack resulted in a crypto user losing $7.8 million worth of SolvBTC, a wrapped Bitcoin product created by Solv Protocol.

On Dec. 11, blockchain security firm Scam Sniffer highlighted the incident and shed further light on the evolving sophistication of such scams.

How the attack unfolded

According to Scam Sniffer, the victim unknowingly signed a phishing transaction, which triggered a direct asset transfer to an address pre-computed using Ethereum’s CREATE2 opcode.

Scam Sniffer explained that attackers leveraged CREATE2 to predict contract addresses before deployment.

This tactic bypasses wallet security alerts by generating new temporary addresses for each malicious signature. After the victim signs the transaction, the attacker deploys a contract at the designated address and drains the wallet.

The CREATE2 opcode, often used in legitimate applications like Uniswap to deploy Pair contracts, is now being exploited in wallet-draining schemes.

Rising scams

Scam Sniffer also warned of a growing trend of crypto scams on the social media platform X.

In the first week of December, the number of fake crypto accounts surged to over 300 daily, compared to 160 in November. Many of these accounts impersonate influencers to lure victims into joining fraudulent Telegram groups.

Once users join these groups, they are asked to verify their identities using a bot called OfficialSafeguardBot. The bot creates a false sense of urgency, pressuring victims to complete the process quickly.

During verification, the bot secretly injects malicious PowerShell code into the victim’s clipboard. If executed, the code downloads malware designed to compromise the user’s system and crypto wallets.

Scam Sniffer noted that the malware, flagged by VirusTotal, has already led to multiple confirmed cases of private key theft. The security firm described this as a new phase in crypto scams, where attackers combine phishing tactics with advanced social engineering and malware deployment.

 

Grace Cooper

Cryptocurrency, Cryptocurrencies, Bitcoin, Phishing attack, Crime

Read more similar news:

01.01.2023, 11:41 • Crime
Gangsters ‘call for ceasefire’ after deadly Christmas Eve pub shooting
01.01.2023, 13:00 • Crime
Four human skulls wrapped in tin foil found in package going from Mexico to US
01.01.2023, 12:29 • Crime
Crowds crash barriers at London NYE - while cops run over & huge rave busted
01.01.2023, 14:21 • Crime
Police investigating sexual assault at nightclub allegedly involving Dani Alves
01.01.2023, 14:08 • Investigation
All about Rachel Nickell who was murdered in front of her son Alex Hanscombe
01.01.2023, 16:32 • Crime
Two men stabbed outside nightclub in early morning New Year's Day horror attack
01.01.2023, 17:14 • Crime
Woman sexually assaulted by intruder at care home in sick New Year's Day attack
01.01.2023, 16:24 • Crime
Family of boy, 11, ‘grieving’ after child hit by bus as ‘mum screamed’
01.01.2023, 18:19 • Crime
Europe's worst pickpocketing hotspot named as street in Spain loved by tourists
01.01.2023, 16:49 • Crime
Andrew Tate 'tried to lure ex-Playboy model to Romanian lair' before his arrest