Fake Zoom Link Leads To Multi-Million Crypto Heist

A fake Zoom crypto scam has resulted in millions of cryptocurrencies being stolen from holders.

The security firm SlowMist reported that a phishing attack disguised as a Zoom link stole cryptocurrency assets worth millions.

The attack started on November 14, 2024, targeting crypto holders through malicious software.

The attack has been linked to Russian hackers.

tbh, seeing scams like this makes me so frustrated. fake Zoom links to steal crypto? that's just low. always double-check your links, folks. stay safe out there and don't let them catch you off guard. anyone else had a close call?

— Jack Rassell (@JustJackRassel) December 27, 2024

Here’s what Crypto News reported:

Fake Zoom crypto scams have stolen millions from users, utilizing phishing links that mimic legitimate meetings to distribute malware, warns blockchain security firm SlowMist.

A detailed report by blockchain security firm SlowMist reveals that a sophisticated phishing attack disguised as a fake Zoom meeting link has stolen crypto assets worth millions.

The scam, first identified on November 14, 2024, targets users by distributing malicious software through links that mimic the legitimate Zoom interface. After digging deep, this phishing campaign has been linked to Russian-speaking hackers. The stolen funds were tracked to various crypto platforms, including Binance, Gate.io, and Bybit.

Zoom scam targets crypto users warns blockchain security firm SlowMist
A phishing scam targeting crypto users that used fake Zoom meeting links as a method of malware distribution and stealing the target’s cryptocurrency assets #Crypto pic.twitter.com/qimyddicJ3

— Jameson Blake (@jamesonblaky) December 27, 2024

Per Cryptopolitan:

SlowMist has brought attention to a new phishing scam targeting cryptocurrency users. The scam disguises itself as fake Zoom meetings to distribute malware that steals sensitive data. It involves counterfeit Zoom links that trick victims into downloading malicious files aimed at extracting cryptocurrency assets.

According to blockchain security platform SlowMist, the attackers behind the scam used a sophisticated phishing technique involving a domain that mimicked the legitimate Zoom domain. The phishing website, “app[.]us4zoom[.]us,” looks very similar to the genuine Zoom website interface.

⚠️Beware of phishing attacks disguised as Zoom meeting links!🎣 Hackers collect user data and decrypt it to steal sensitive info like mnemonic phrases and private keys. These attacks often combine social engineering and trojan techniques. Read our full analysis⬇️… pic.twitter.com/kDExVZNUbv

— SlowMist (@SlowMist_Team) December 27, 2024

Join the conversation!

We have no tolerance for comments containing violence, racism, profanity, vulgarity, doxing, or discourteous behavior. If a comment is spam, instead of replying to it please click the icon below and to the right of that comment. Thank you for partnering with us to maintain fruitful conversation.