Security researchers have uncovered several new phishing campaigns making use of the collapse of Silicon Valley Bank (SVB) as a entice to steal cryptocurrency.
Proofpoint said it noticed lures associated to USD Coin (USDC), a digital stablecoin tied to the greenback, that was impacted by the SVB collapse.
“This campaign made use of messages that impersonated numerous cryptocurrency brands, which were being despatched by using destructive SendGrid accounts and that contains SendGrid URLs. The URLs redirected to numerous diverse domains that requested the sufferer to declare their crypto/redeem to USD,” it tweeted yesterday.
Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).
➤ Get Mullvad VPN with 12% Discount
“Clicking the button would check out to open up a DeFi URL, so the target would want to have a DeFi handler put in, this sort of as MetaMask wallet. The target would then be lured to put in a clever contract that would transfer the contents of the victim’s wallet to the attacker.”
Browse additional on crypto phishing scams here: Key Phishing Campaign Targets Trezor Crypto Wallets.
P2P payments tech company Circle, which was exposed by the failure of SVB, announced that USDC would stay redeemable at a 1:1 amount with the greenback, sparking added phishing campaigns.
Researchers at Cyble mentioned they spotted numerous phishing web-sites impersonating Circle endorsing the 1:1 offer. Some ask for users scan a QR code to progress, which effects in their crypto wallet being compromised, the vendor claimed.
Cyble reported it saw a identical tactic at do the job in a individual phishing marketing campaign that includes sites impersonating SVB and promoting a bogus USDC reward system.
“A QR code will be displayed if a user clicks on the ‘Click in this article to claim’ button to obtain the promised USDC on the phishing site,” said Cyble.
“The sufferer is instructed to scan this QR code applying any cryptocurrency wallet, this kind of as Have faith in, MetaMask or Exodus. Nevertheless, scanning the code will result in the compromise of the user’s wallet account.”
Some areas of this write-up are sourced from:
www.infosecurity-journal.com
New Cryptojacking Operation Targeting Kubernetes Clusters for Dero Mining