30s Summary
Cyber criminals are creating fake meeting apps named “Meetio” to steal login details and harvest information about crypto wallets. Using AI, they construct legitimate-looking websites and social media accounts before encouraging users to download their harmful app. The malware also seeks out browser cookies and autofill credentials. To lure victims, they use social engineering or catfishing techniques. Victims have reported having their cryptocurrency stolen after accepting an invite to discuss a business opportunity. The criminal operation, targeting both macOS and Windows users, has been active for about four months.
Full Article
Watch out, folks working in the Web3 space – shady characters are launching fake meeting apps to infect your devices with malware and pinch your login details to sites, apps and crypto wallets. According to Cado Security Labs, cyber crooks are rolling out AI to make impressive-looking sites and social media accounts. They’re then contacting innocent people and convincing them to download their dodgy app.
Currently named “Meetio” (but it changes names a lot), this nasty app’s sole intention is to track down sensitive stuff like your Telegram and bank logins, plus information about your crypto wallets. Once it’s got hold of this sort of data, it pings it straight back to the bad guys. They aren’t just stopping at the obvious stuff either; they’ll also have a hunt through your browser cookies and autofill credentials from apps like Google Chrome and Microsoft Edge.
To nab their victims, these scammers might use social engineering or even catfishing techniques. Tara Gould, the threat research lead at Cado, wrote about one user who was pinged on Telegram by a supposed mate wanting to chat about a business opportunity, only to figure out later they were actually an imposter.
Some victims have shared their experience of being on calls about Web3 work, downloading the software, and then having their cryptocurrency stolen. To make their scam look more authentic, these swindlers set up whole fake company websites filled with AI-generated content.
The fake sites where you’re tricked into downloading the compromised software even steal your crypto stored in your web browser. The scam artists have cooked up versions for both macOS and Windows, and have been getting away with this racket for about four months!
But this sort of hoodwinking isn’t fresh news, other crooks have been up to similar tricks. In August, a blockchain investigator came across a bunch of developers, most probably from North Korea, making fake identities for crypto projects. Then in September, the FBI rolled out a warning about North Korean hackers aiming at crypto firms and decentralized finance projects with malware dressed up as job offers. Stay vigilant, folks!