Fraudsters use bots to monitor Tweets requesting support to MetaMask, TrustWallet, and other crypto wallets to respond with scams within seconds, BleepingComputer reports.
To launch these targeted attacks, scammers monitor all public Tweets fro specific keywords and phrases, such as “support”, “assistance” and “help”, paired with “MetaMask”, “Phantom”, “Yoro” and “TrustWallet”. Twitter bots are used to respond to these Tweets automatically, posing as a fake customer service representative offering a malicious link that steals the victim’s cryptocurrency wallet.
All scammers’ replies have the same purpose of stealing the recovery phrase of the victim’s wallet, which an attacker can use to import the wallet to their device. In order to steal recovery/seed phrases, threat actors set up support forms on Google Docs and other cloud platforms. These forms mimic a simple support form and ask the user for their email address, problem, and wallet recovery kit, as shown in the fake MetaMask support form below.
The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY
Follow Us
© 2015 – 2019 IT Security Guru – Website Managed by Calm Logic
© 2015 – 2019 IT Security Guru – Website Managed by Calm Logic
This site uses functional cookies and external scripts to improve your experience.
Privacy Settings / PENDING
This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.
NOTE: These settings will only apply to the browser and device you are currently using.
GDPR Compliance

source

You May Also Like

Armis Launches new ‘Critical Infrastructure Protection Program’

Today, Armis has announced the Critical Infrastructure Protection Program (CIPP) to help…

AT&T Cybersecurity Delivers New Managed SASE Solution to Connect and Protect the Multi-Cloud, Hybrid Enterprise

A new partnership between Cisco and AT&T Cybersecurity sees Cisco’s secure access…

FBI warns of scam job listings

Scammers are conducting phishing campaigns using fake advertisements on recruitment platforms.The FBI…

Cato Networks Announces New Data Loss Prevention Engine & SSE 360

Cato Networks, global SASE cloud provider, just announced the release of their…