As a seasoned crypto investor with over two decades of experience under my belt, I’ve seen my fair share of scams and cyberattacks. However, this latest scheme by FIN7 using fake AI websites to steal crypto wallet details has taken cunningness to a whole new level.
As per a report by 404 Media, it appears that Russian hackers have devised a cunning strategy involving fabricated AI websites as bait to pilfer details from crypto wallets. A cybersecurity company named Silent Push recently disclosed that the criminal masterminds behind this scheme are a well-known group known as “FIN7”.
When someone tries to get nude pictures or register for complimentary trials, they inadvertently end up downloading harmful software (malware) instead.
This particular piece of harmful software, identified as RedLine and Lumma Stealer, is specifically crafted to gather login details, along with other confidential data such as data stored in cryptocurrency wallets.
Zach Edwards, an experienced analyst at Silent Push, points out that the main group of victims in this fraudulent scheme tends to be technologically proficient individuals with a keen interest in artificial intelligence technology.
These websites, crafted by skilled hackers, are designed to look trustworthy and authentic. By employing strategic SEO techniques, they manage to secure high positions in search engine results. What’s more, the websites seem professional, offering features like uploading images and creating deepfake nudity content.
Yet, when users attempt to view the claimed photos, they’re usually redirected to a faulty Dropbox link, which more often than not fails to function. Consequently, instead of images, they end up installing potentially harmful software onto their devices.
Seven misleading websites such as “aiNude.ai”, “easynude.website”, and “nude-ai.pro” have been flagged by Silent Push as potentially fraudulent or deceitful sites.
Even though those websites no longer exist, security experts advise anyone who had interactions with them to suspect potential breaches on their devices.
The cybercriminal group known as FIN7 boasts a significant background in financial deceit and has links to multiple ransomware organizations such as DarkSide and BlackMatter. It’s these groups that have been implicated in high-profile attacks, like the $20 million ransom extorted from UnitedHealth.
Apart from being recognized for their cunning methods, they often deceive by posing as genuine organizations, aiming to persuade individuals into unknowingly installing harmful software.
Read More
Sorry. No data so far.
2024-10-03 20:36