- Computer pirates are pointing to Business CRM accounts to steal mail lists
- The emails used to send spam and deceive people to configure compromised encryption wallets
- The goal is to steal money, so it’s on guard
Computer pirates are stealing mail lists from the main companies and use them to enter people’s cryptocurrency wallets and snatch their funds.
A new report by Silent Push cybersecurity researchers, who called the “poisoning” of the campaign, described how criminals established falsified destination pages for companies such as Coinbase, Ledger, Mailchimp, Sendgrid, Hubspot and others. HAVE THE PEOPLE SEQUENY CREDENTIALS, which allow cybercounts to log in at mail service accounts and exfilt any mail list.
Then they would send emails, impersonate those companies and urge users to configure a new coinbase wallet, using the seed phrase integrated into email. A seed phrase is a series of 12 to 24 words generated by the wallet that gives access to the funds inside. It acts as a master key, so anyone who has it can restore the wallet and control cryptocurrencies inside.
Seed phrase poisoning attack
“Grand spam recipients are attacked with an poisoning attack by phrase of cryptocurrency seeds,” Silent Push explained.
“As part of the attack, poisoning provides security seed phrases to get potential victims to copy and paste in new cryptocurrency wallets for a future commitment.”
Once users configure new wallets and overcome them with their funds, criminals can simply send money to another place, which is a permanent loss for victims.
The researchers believe that the campaign is the work of two “freely aligned” threat actors, called Spider Spider, and Cryptochameleon, which are part of a wider cyber crime ecosystem called com.
Since the cryptocurrency has no permission and decentralizes, once the funds are sent from one wallet to another, the only way to recover them is that the other side returns the money.
In 2024, the United States government has seized dozens of millions of dollars in cryptography, as part of a broader investigation on market handling, theft, fraud and more.
Through The hacker news
