News Heading - 1

Crypto-Related Phishing Scam Lures Victims to Steal Over $80 Million

  • Written by Shipra Sanganeria Cybersecurity & Tech Writer
  • Fact-Checked by Justyn Newman Former Lead Cybersecurity Editor

Inferno Drainer, the most notable crypto-related phishing campaign, imitated over 100 cryptocurrency brands to trick victims into approving malicious transactions.

The drainer, which is now defunct, was active between November 2022 to November 2023, and has over 16,000 unique phishing domains associated with it, researchers at Singapore-based Group-IB revealed in a blog post.

Inferno Drainer operates under a scam-as-a-service model, where the organizer/developer keeps 20% of the stolen assets, while the users of the service keep the remaining 80%.

Quoting figures from Scam Sniffer , the firm went on to reveal that more than $80 million was stolen from over 140,000 victims in the said year. It further emphasized the danger to crypto owners by the software and its users, as it ‘’was still active as of the middle of January 2024’’.

First, the victims were lured to the dubious crypto brand websites by Inferno Drainer users. These sites ‘’spoofed popular Web3 protocols such as Seaport, WalletConnect, and Coinbase to initiate fraudulent transactions.’’

Seaport is a Web3 marketplace protocol used for NFT trading while ‘’WalletConnect and Coinbase are protocols that allow self-custody crypto wallets to connect to decentralized applications (DApp) in Web3.’’ These protocols require manual authorization by a user. Thus, to make it seem legitimate, the drainer’s developer spoofed these protocols to defraud the victims.

Upon establishing the infrastructure and successful linking of users’ accounts, the scammers ensured that victims accepted the transactions in lieu of financial rewards or prizes.

‘’The allure of potential riches, which forms a key part of the content presented to victims on phishing websites, makes users connect their wallets to the attacker’s infrastructure. The malware was placed on sites that are disguised as official crypto token projects and spread on X (formerly Twitter) and Discord,’’ the researcher explained.

Group-IB warns crypto owners to be cautious when clicking on links offering free financial rewards and prizes. ‘’The dangers will only get worse. In-depth investigations and bringing criminals to justice are the only way to prevent future attacks. It is crucial that victims file cases about the attacks they experienced with the relevant law enforcement agencies.’’

News Heading - 2

Android App MyEstatePoint Exposes Half a Million Users’ Data

  • Written by Shipra Sanganeria Cybersecurity & Tech Writer
  • Fact-Checked by Justyn Newman Former Lead Cybersecurity Editor

The popular property search app, MyEstatePoint, exposed sensitive data of approximately half a million users, including email addresses.

The Android application developed by India-based NJ Technologies is known to have nearly 500,000 downloads, and over 497,000 users’ information is said to have been exposed in this breach. According to researchers at Cybernews , the leaked user data is almost equal to ‘’the number of times the app was downloaded.”

“This comprehensive dataset poses severe risks as threat actors could exploit the exposed information for unauthorized access, identity theft, fraudulent activities, and potentially compromise the privacy and security of the affected individuals,” the researchers said.

Although at the time of writing this article, the leak was patched; the team at NJ Technologies have not clarified or released any statements regarding the incident. Therefore, it remains unclear if the affected users have been notified of the breach and its impact on their security and privacy.

The breach as well as the possibility of the victims being in the dark, leaves them vulnerable to potential threats. Cybercriminals can use this information to defraud victims via phishing scams, identity theft, and financial fraud. The use of email addresses and plain-text passwords further increases the risks, especially if reused across multiple online accounts.

Keeping in mind the potential vulnerabilities, users of MyEstatePoint Property Search application should consider changing their passwords. To create complex and intricate passwords, one can either use password manager services or read through expert suggested articles. In addition, they should also exercise caution and prevent falling prey to various social-engineering attacks, including phishing texts, emails, and calls.