The CryptoChameleon scheme is mobile-focused and primarily targets citizens in the United States. The most frequent targets of attacks are high-profile individuals, including employees of the Federal Communications Commission (FCC), users of major cryptocurrency exchanges Binance, Coinbase, Gemini and Kraken, owners of Trezor hardware wallets, as well as users of ShakePay and Caleb&Brown services.
Fraudsters use a multi-pronged approach, sending phishing emails and SMS messages and making phone calls to trick users into revealing sensitive information. The scammers pose as customer support and, under the pretext of a recent hack, convince people to urgently take the specified actions to ensure the security of their crypto wallet, as a result of which they obtain user credentials.
Hackers replicate single sign-on (SSO) pages. To prevent interaction with automated analysis tools, phishing pages use hCaptcha. This allows the fake login screen to appear only after the victim enters the CAPTCHA. This strategic move prevents rapid identification by security tools.
When entering credentials, victims are prompted to enter a two-factor authentication (2FA) code or “wait” under the guise of verification. The attacker uses this opportunity to log into the system using stolen data.
According to Scam Sniffer analysts, the number of phishing attacks decreased by 75% in February. About 57,000 users became victims of cryptocurrency scammers last month, with losses amounting to about $47 million.
Source: Bits
I am an experienced journalist, writer, and editor with a passion for finance and business news. I have been working in the journalism field for over 6 years, covering a variety of topics from finance to technology. As an author at World Stock Market, I specialize in finance business-related topics.
