Fraudulent websites have successfully stolen the personal information of a number of individuals from the UK, Australia, South Africa, the United States, Singapore, Malaysia, Spain and more. The attack was carried out as a targeted multi-stage Bitcoin (BTC) scam propagated by a number of fraudulent websites.
According to the Singapore-based intelligence company Group-IB, the attack exposed personal information to thousands of people.
Victims' phone numbers, which in most cases came with names and emails, were in personalized URLs used to redirect people to websites. These sites pretended to be local news outlets and even went so far as to contain made-up comments from prominent local personalities.
By analyzing the leaked figures, Group-IB was able to determine what leaked most of the data. They found that the UK was the most affected location with 147,610 personal records.
The report states that victims usually received an SMS or text message that included the recipient's name. This was followed by a phishing message intended to impersonate a recognized media channel.
Ilia Rozhnov, head of Group-IB's Brand Protection team in the Pacific, told Cointelegraph:
"Fraudulent schemes have become more complicated. They now include multiple stages, complex distributed infrastructure, and misuse of personal and corporate brands that are difficult to detect and block using traditional detection methods. Businesses and celebrities whose names have been hijacked by fraudsters are walking reputation damage and face reduced customer confidence. "
Researchers saw six active domains with the same Bitcoin investment platform. Each operated under a different name. Some of these are Crypto Cash, Bitcoin Rejoin, Bitcoin Supreme and Banking on Blockchain.
Further analysis of the URLs revealed that a short link directs a victim to another URL that shows all their personal information, such as phone number, first and / and last name, and sometimes an email. email address, and is used for redirects to fake websites disguised as a local media channel. (…) Experts believe that the personal information information may have been obtained by fraudsters through a separate fraudulent scheme or simply purchased from a third party party. "
The Group-IB team has analyzed the exposed information using a number of data breaches. They also analyzed several underground marketplaces for the presence of this data. So far, they have not found any traces of the exposed information.
The source of the leak has not been determined as of the pressing time. The team reported the study's findings to the appropriate authorities in each affected country.
Xrplorer cryptocurrencies forensic experts warned on June 15 that hackers were trying to steal the secret keys of XRP users by claiming that Ripple was giving away tokens.