A former DeFi miner recently fell victim to a phishing attack, where malware in the form of a fake Zoom app sucked $1 million out of the DeFi user’s wallet.
The attack takes place
The victim described how she received a direct message from the attacker starting what appeared to be a normal conversation via the Twitter page. The attack began with a threat actor posing as the CEO of a real crypto project and introducing himself by mentioning people the recipient knew.
The attacker suggested that the next step should be to schedule a meeting to discuss the development of the project via ZOOM; the link to the Zoom meeting was also shared.
Believing the request, the victim attempted to reinstall the Zoom application as the fake web page demanded. As a result, after downloading and opening the link, they triggered malware intended to capture wallet credentials and private keys.
The victim only learned of the loss when his Twitter account was hacked and his crypto wallet emptied.
Even though the victim is a fairly experienced DeFi user and miner, he admitted that the loss was due to a single moment of inattention.
- Read also:
- Crypto phishing scams 2024: How hackers stole $500,000 in one month
- ,
Growing Threat of Malware in Crypto
The attack is not an isolated event but one of many malware attacks targeting cryptocurrency users. Hackers like those who have registered tricks at the us04-zoom(.)us domain to ensure that unsuspecting individuals install malware on their devices. Such phishing campaigns typically take advantage of familiar tactics such as popular Zoom platforms to reduce guard.
Security Measures Crypto Users Should Take
To mitigate the risk of such attacks, experts recommend the following precautions:
- Check Sources: It is always important to check the authenticity of links and download sources in a particular popular application such as Zoom or Twitter.
- Run security scans: Some malware infiltrates the computer via downloaded files, so make sure downloads are scanned before installation using a reliable antivirus.
- Enable 2FA: Increase account security by also implementing two-factor authentication for all accounts.
- Stay skeptical: don’t interact with spam text messages or chats, even from your “friends” or “followers.”
Let this be a stark reminder: the world of DeFi is no different, and a single oversight can lead to terrible results. Stay alert, stay safe!
Never miss a beat in the crypto world!
Stay ahead of the curve with breaking news, expert analysis and real-time updates on the latest trends in Bitcoin, altcoins, DeFi, NFTs and more.
