• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • About us
  • Write for us
  • Terms and Conditions
  • Privacy Policy
  • Disclaimer
  • Contact
  • All Posts
  • Advertise

TronWeekly

Crypto World News

  • Home
  • Education
    • Best TRON Wallets
    • Beginner’s guide to TRON
  • Opinion
    • Tron Tokens
    • Market Analysis
  • Industry
    • Tron Exchange
    • Project Review
  • Press Release
  • Advertise
  • About us
    • The Team
    • Editorial Policy
    • Write for us
    • Privacy Policy
    • Disclaimer
    • Terms and Conditions
    • Contact
You are here: Home / Archives for Phishing attacks

Phishing attacks

Lazarus group alert: Japanese Police issue warning

October 17, 2022 by Aishwarya shashikumar

The crypto-verse has had a number of hacks and attacks throughout the years. The Lazarus Group, located in North Korea, was recently found to be behind some of the most destructive attacks on the industry. The Lazarus Group has been engaged in cryptocurrency-related phishing breaches for a number of years, according to recent information from the Japanese government.

Japanese police and other authorities have warned that a North Korean hacker group known as Lazarus is highly likely targeting Japanese crypto asset-related operators in its cyberattacks. https://t.co/tyGBxWlv5M

— The Japan Times (@japantimes) October 16, 2022

The Financial Services Agency (FSA) and Japan’s National Police Agency (NPA) have warned crypto platforms to be on the lookout for phishing scams. These organizations think that the primary reason the hacker gang has been taking cryptocurrency is that it is “handled more loosely.”

The statement went on to describe these phishing attacks in more detail. It read,

“This cyber attack group sends phishing emails to employees impersonating executives of the target company […] through social networking sites with false accounts, pretending to conduct business transactions […] The cyber-attack group [then] uses the malware as a foothold to gain access to the victim’s network.”

Therefore, businesses all around the country were urged not to click email attachments or even URLs carelessly. Downloading files from unverified sources was advised to be avoided, especially with reference to encryption.

The NPA also recommended “installing security software,” “using multi-factor authentication,” and avoiding using the same password across numerous platforms or services for owners of digital assets.

The community then began to wonder if the Lazarus Group would continue to get money from Japan.

The Lazarus group saga to continue?

The North Korean government’s support for the Lazarus Group is known to everyone worldwide. The community has seen numerous cryptocurrency platforms fail over the years. The Lazarus Group has established its control over these bridges, first with the Ronin Bridge breach and most recently with the Harmony’s Horizon Bridge hack.

Despite the Japanese government’s attempts, the Lazarus organization has persisted in destabilizing crypto companies there. It was revealed that crypto businesses have received many warning letters from the NPA and FSA. The most recent warning is said to be the fifth.

Therefore, it was unlikely that the Lazarus Group would see a decline in support from Japan.

Filed Under: News, Crypto Scam, World Tagged With: Cryptocurrency, Japan, Lazarus Group, North Korea, Phishing attacks

Uniswap Hackers Steal 4295 ETH Via Phishing Attack

July 12, 2022 by Lipika Deka

DeFi protocol Uniswap fell victim to an elaborate phishing campaign that targeted liquidity providers [LPs] resulting in a loss of 4295 ETH which comes close to $4.7 million.

Although the exact amount of stolen funds is not yet confirmed by the DEX, there are multiple reports by various experts detailing the incident.

Metamask security expert Henry Denley was the first to raise the red flag. According to him, about 73,399 addresses have received a malicious token under the false impression of a UNI airdrop.

The token if clicked directs them to a domain “/uniswaplp.com“, which imitates the real Uniswap branding. The website hosted by bad actors allows curious users to swap their new tokens for Uniswap [UNI], worth $5.34 each at the time of writing.

image 13
Uniswap Hackers Steal 4295 ETH Via Phishing Attack 3

The interface would instead send the users’ address and browser client info to the attackers’ command center, which would also attempt to drain cryptocurrency from their wallets.

“There is evidence that this campaign is purely targeting native coin [ETH, BNB] and Uniswap LP positions”, the tweet read.

Another crypto tracking platform tweeted that the attackers siphoned the stolen assets to Tornado Cash and put the funds at 7,500 ETH, nearly $8 million.

image 12
Uniswap Hackers Steal 4295 ETH Via Phishing Attack 4

Uniswap Hack – A phishing Attack On LPs Not A Exploit On The V3 Protocol

Binance CEO Changpeng “CZ” Zhao too tweeted the incident calling it a potential exploit of Uniswap V3 on the ETH blockchain. CZ later clarified that the exploit was actually a phishing attack and that the protocol is safe.

“The attack looks like a phishing attack. Both teams responded quickly. All good. Sorry for the alarm. Learn to protect yourself from phishing. Don’t click on links.”

However, there are rumors among the crypto community that the losses might be much higher than what is being reported.

Meanwhile, Uniswap’s price reacted by a sharp decline just moments after CZ’s initial tweet, falling by almost 14% in the 24-hour index.

UNI has since posted a marginal recovery to trade at $5.61 at press time. Still, the token is down by 86% from its previous peak of $42.

Filed Under: Cyber Security, DeFi, News Tagged With: CZ, DeFi, Phishing attacks, UNI, Uniswap

BAYC & OtherSide Discords Breached; Estimated Loss Of $360K

June 5, 2022 by Lipika Deka

Some of NFT’s biggest names- Bored Ape Yacht Club or BAYC & OtherSide discords servers were compromised, leading to a loss of around 200 ETH or $360000 in total. Yuga Labs, the creator firm behind the projects confirmed the exploit via Twitter adding that it is actively investigating the incident.

It all started when the project’s community manager, Boris Vagner‘s Discord account got hacked. The bad actor took advantage of the breached profile and posted phishing links in both the official BAYC and its related metaverse project called Otherside’s Discord channels.

According to reports, the hacker managed to take away 32 NFTs including one Bored Ape, two Mutant Apes, and five Otherside Deeds.

BAYC AND OTHERSIDE DISCORD HACKED
DO NOT CLICK THE LINK pic.twitter.com/Z30yzDnEnl

— EthanDG 💎🧪 (@0xEthanDG) June 4, 2022

Hackers have targeted Discord Inc. groups in order to get users to click on malicious links. Previously covered by TronWeekly, on May 25, 2020, a Moonbirds NFT owner lost 29 of these Ethereum-based tokens in phishing fraud.

The stolen NFTs were valued at roughly $1.5 million. But the most recent high-profile case of impersonation fraud has been that of Mike Winkelmann, better known as Beeple, a digital artist and popular NFT developer whose Twitter account was hacked by scammers to post a phishing scam.

BAYC hack detailed analysis

Co-founder of Yuga Labs Gorden Goner tweeted that “We took accountability with our tweet from BAYC. We are directly working with those impacted.” He then blamed instant messaging platform Discord saying it was time for a “better platform that puts security first”.

In response, a user ask him to stop blaming Discord and accused the team of being complacent, as “this could have been prevented”.

Some vented out their frustration by calling the exploit “Ponzi of the century”.

One Twitter user wrote– ” Probably a rogue team member or a team member didn’t have 2FA [ Two-factor authentication] enabled and got phished or hacked individually. the entire team from mods and up should be required 2FA by default though, especially in the BAYC server.”

Another commented in the replies that 2FA can easily be bypassed and is somewhat pointless on Discord. That being said, one can check OxRebels’s post-mortem technical report detailing how the 2FA Discord Announcements Bot might help minimize the repeat of such attacks.

.

Filed Under: Crypto Scam, News Tagged With: BAYC, Nfts, Phishing attacks

29 Moonbird NFTs Worth $1.5M Succumbs To A Phishing Attack

May 26, 2022 by Lipika Deka

A Moonbirds owner lost 29 of these Ethereum-based NFTs in what appeared to be a phishing hack. As shared by Cirrus via tweet, the stolen nonfungible tokens [NFTs] were valued at nearly $1.5 million and occurred due to clicking on a bad link provided by the attacker.

For those unfamiliar, Moonbirds is an Ethereum NFT collection comprising over 10,000 profile pictures. Holders gain access to the ‘PROOF community’, and can “nest” their NFT owls for future benefits.

Twitter user and NFT enthusiast Andeh, posted that the P2P transaction was used by the alleged scammer. In the thread, he claimed to have made contact with the victim and has been able to track down the bad actor’s address and name.

Andeh also said that the attacker is a seasoned criminal and has been involved in many scams in the past.

While the official Moonbird Twitter handle is yet to respond, it’s still unclear how many victims were affected by the theft.

The latest incident comes after NFT creator Mike Winkelmann, better known as Beeple, had his Twitter account compromised in a phishing attack.

As reported by TronWeekly, the scam earned the attacker $438K in cryptocurrency and NFTs from the hacked Beeple account.

What are Moonbirds Nfts?

Moonbirds NFTs come with a pixelated owl character with randomized traits and features. In a nutshell, it’s similar to the famous Bored Apes and many, many other profile picture projects on the market right now.

Also like the Bored Apes, Moonbird holders have intellectual property rights and can use their owned image to create products, services, merchandise, and more. They also have access to a private community called the PROOF Collective.

Image

The PROOF Collective is an NFT-based membership club created by Kevin Rose, who is a tech founder.

In December 2021, PROOF released the 1,000 access pass NFTs via a Dutch Auction format, starting at just 5 ETH. The price of these quickly accelerated since then. At press time, MOONBIRD’s value is trading at $47k, data from CoinGecko showed.

Besides that PROOF plans to host an NFT conference in 2023, as well as release additional NFTs in the future.

Filed Under: Crypto Scam, News Tagged With: Moonbirds, Nfts, Phishing attacks

Apple Users Warned by MetaMask as iCloud Phishing Attacks Increase

April 18, 2022 by Goku

MetaMask, a crypto wallet company owned by ConsenSys, has issued a warning to the public about Apple iCloud phishing assaults.

The vulnerability affects iPhone, Mac, and iPad users since default device settings save a user’s seed phrase or “password-encrypted MetaMask vault” on the iCloud if the user has allowed automatic backups for their app data.

Users risk losing their assets if their Apple password “isn’t strong enough” and an attacker is able to phish their account credentials, according to a Twitter thread posted on April 18.

To ensure the safety of the wallet, MetaMask released a tweet detailing the instructions:

🔒 If you have enabled iCloud backup for app data, this will include your password-encrypted MetaMask vault. If your password isn’t strong enough, and someone phishes your iCloud credentials, this can mean stolen funds. (Read on 👇) 1/3

— MetaMask 🦊💙 (@MetaMask) April 17, 2022

Warnings from a MetaMask user who fell, victim

The MM warning came in response to allegations from an NFT collector known on Twitter as “revive dom,” who reported on April 15 that this precise security problem deleted his whole wallet, which included $650,000 worth of digital currencies and NFTs.

Hey y’all, let’s see how amazing this community can be. My entire wallet was just stolen. Totally wiped out,

MAYC 28478, MAYC 8952, MAYC 7536

Gutter cat 2280 , 2769, 2325
Also stole 100k in ape coin.
Looking for all the help I can get.

100kreward @BoredApeYC @GutterCatGang

— Domenic Iacovone (@revive_dom) April 14, 2022

DAPE NFT project founder “Serpent” – who also helped capture the attention of MetaMask by sharing the news with their 277,000 followers – presented a synopsis of what occurred to the victim in a different thread earlier today.

The victim got repeated text messages urging him to change his Apple ID password, as well as a phony call from Apple that was ultimately a faked caller ID, according to him.

“revive dom” gave over a six-digit verification number to establish that he was the owner of the Apple account, despite the fact that he was apparently unaware of the caller. The fraudsters then hung up and used data from his iCloud account to get access to his MetaMask account.

“revive dom” expressed his displeasure with MetaMask after the warning was issued today, saying that:

“I’m not saying they shouldn’t do it; I’m just saying they should inform us about it.” Don’t tell us we should never keep our seed phrase online, then go ahead and do it behind our backs. If 90% of people were aware of this, I’m willing to bet that none of them would have the app or iCloud turned on.”

Filed Under: Cyber Security, Crypto Scam Tagged With: Apple, iCloud, MetaMask, Phishing attacks

Primary Sidebar

Recent Posts

  • Laundering Of Ethereum Worth $4M By N.Korean Lazarus Group February 9, 2023
  • Ripple CTO’s Heated Face Off With BTC SV Supporter February 9, 2023
  • Ethereum Heat Up in 2023, Average Gas Prices Soar Amid Rising On-Chain Activity: Report February 9, 2023
  • Alameda Wallets Spark Controversy with Million-Dollar Crypto Transfers: Report February 9, 2023
  • Orbeon Protocol (ORBN) Set To Explode by 6000% After Presale Concludes: Here’s Why February 9, 2023

Footer

News

  • Altcoin News
  • Bitcoin News
  • Blockchain
  • Tron News
  • World

Digest

  • Meet the Founder
  • Price Winning Article
  • DeFi
  • Cyber Security
  • Crypto Scam

Industry

  • Project Review
  • Technology
  • Fintech
  • Tron Exchange
  • New in Town

Tron Universe

  • Event and Tron Parties
  • New in Town
  • Tron Tokens

Follow Us

Subscribe US

Copyright © 2023 · Tron Weekly. All Rights Reserved. NOTE: Tron Weekly is an independent crypto news site that adheres to the strict journalism policy anchored on transparency, trust, and objectivity, we have no affiliation with the TRON Foundation, its founder Justin Sun or any other cryptocurrency firm.