Crypto Scammers Now Tracking Dating Apps Like Tinder for Prey
Crypto crooks may have found a new hunting ground for victims holding bitcoins (BTC) and altcoins: dating apps.
According to a case study published by the US provider of crypto self-preservation solutions House, the crooks have developed a “new attack” that targets crypto enthusiasts. The firm warned against “malicious actors who hide on dating applications.” These attackers, he said, “seem to be getting more crypto savvy.”
The case in point involved a crypto investor and Casa client who found a match on Tinder, a woman who claimed to share her interest in cryptoassets.
The man started chatting with the woman and the duo eventually agreed to meet in person. On the date, however, the man’s suspicions were briefly aroused when her date looked very different from her profile picture and spoke very little of crypto, simply mentioning that she said her parents had “bought her.” BTC 1 for $ 30,000 “.
But after spending time in a cafe, the customer and the woman went for a walk – before returning home. But while they were drinking at his home, he left to go to the bathroom. Upon returning, he continued to consume his drink – before, Jameson Lopp, co-founder and CTO of Casa, explained:
“We suspect the woman mixed our client’s drink with scopolamine, also known as ‘Devil’s Breath’, or a benzodiazepine. These drugs are well known to cause loss of inhibition and loss of memory.
This apparent cascade made man lose his inhibitions. Lopp continued:
“His memories are fuzzy after this point, but the client remembers drinking a little more after returning from the bathroom.”
“Sometime later,” the customer said, the woman “picked up her phone and asked her to show her how to unlock it and find her passwords.”
The guard added: “He knew something was wrong, but his inhibitions and guarantees had been removed. The last thing he remembers is kissing her.
Casa claimed that she did not believe the attack “was carried out solely by the woman he had met”, writing:
“She most likely handed the phone over to someone else, possibly a criminal organization, to get down to business and clear her various accounts as quickly as possible. The woman was most likely acting as a social engineer.
The victim suffered very minor losses and was “unable to function lucidly for approximately 24 hours”. But a “small amount of bitcoin” was removed from the customer’s exchange accounts.
“He was able to block some of the other purchases and withdrawals requested by contacting these custodians to inform them of the compromise. Since the attacker only had one of the client’s five keys for his Casa multisig, these funds could not be spent. “
But the moral of the story, perhaps, is that the customer was using a two-factor authentication (2FA) solution that involved using the Google Authenticator app on their smartphone – meaning anyone with had access to his phone could essentially access his otherwise unprotected crypto wallets. The Google app was not password protected: once the attacker had access to his phone, he also had access to the authenticator. A number of major crypto exchanges use 2FA solutions like Google Authenticator to prevent fraud.
On Twitter, Casa CEO Nick Neuman Explain:
“No funds could be stolen from his Casa account, where he kept the majority of his assets. He had set up a properly distributed 3 out of 5 multisig, so it was impossible to steal the majority of his bitcoin in this attack. .
In East Asian countries such as Japan, similar cases are also on the rise, although many do not involve in-person meetings and instead take advantage of coronavirus-related travel bans.
Earlier this year, the Japan National Consumer Center, a consumer watchdog, said the number of complaints received from men using international dating apps more than doubled last year. This figure was bolstered by an influx of “crypto addicted” women ostensibly based in other Asian countries, persuading the men to move their tokens and fiat to seemingly authentic crypto platforms which then turn out to be false.
A man was allegedly tricked into parting with some $ 16,150 by a woman he fell in love with on a dating app – who then convinced him to “join” her in an investment in a crypto platform. The platform later turned out to be an elaborately crafted fake.
– Despite crackdown, crypto scammers continue to run Amok in China
– South African exit scam sees brothers disappear with $ 3.6 billion in Bitcoin
– Ledger Hack Saga Continues: Scammers “Offer” Fake Hardware Wallets
– A ‘flood’ of crypto scam cases hit Spanish courts