Numerous social media accounts and bogus web-sites are pretending to sell the sought-right after hacking resource Flipper Zero to entice cybersecurity experts into creating cryptocurrency transactions.
This new campaign of angler phishing – a form of social media phishing that will involve impersonating company social media accounts to interact with their consumers – was to start with uncovered by security researcher Dominic Alvieri on December 2, 2022.
On Twitter, Alvieri warned of three distinctive Twitter accounts and two websites impersonating the official Flipper Zero vendor to lure possible customers into sending cryptocurrencies – without the need of sending them the Flipper Zero unit in trade.
Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).
➤ Get Mullvad VPN with 12% Discount
At very first glance, one particular of the Twitter accounts seemed extremely related to the official Flipper Zero. However, upon closer examination, the researcher found that the faux account’s deal with applied a cash “I” instead of an “l.” immediately after the “F.”
The phony account (remaining) was designed only a several months ago.
The threat actor seems to use diverse approaches, together with linking the store checkout webpage to Bitcoin and Ethereum wallets and using plisio.net invoices to accept crypto payments.
Flipper Zero is a tiny cybersecurity tool that seems to be like a children’s toy, but that presents hackers, pen-testers and cybersecurity fanatics a assortment of characteristics, like RFID emulation, digital entry key cloning, radio communications, NFC, infrared, Bluetooth, and much more.
It was released via a Kickstarter marketing campaign in 2020 and received $4,882,784 in pledges, accounting for 81 moments much more than the $60,000 the corporation experienced hoped for.
Around the past calendar year, having said that, the merchandise experienced from generation issues resulting in provide shortages that built it extremely hard to satisfy the still-increasing demand from customers.
In September 2022, income holdbacks by electronic payments platform PayPal set the venture at risk, endangering its production by keeping $1.3 million destined for buying new output batches.
The danger actor is leveraging the gap involving a superior desire and a reduced offer.
At the time of crafting, a single on line store and two of the 3 fake Twitter accounts are nonetheless up.
Some pieces of this post are sourced from:
www.infosecurity-magazine.com