Social Engineering in Cryptoeconomics


This blog is a continuation of the previous blog that introduces the act of social engineering. It would be wise to read that blog before we can go ahead and explain how social engineering works in cryptoeconomics.


Phishing for Bitcoins
Social engineering attackers are also targeting cryptocurrency.
Researchers at Cisco's Talos security group have identified a malicious advertising campaign they dub Coinhoarder, which appears to be based out of Ukraine and to have netted about $50 million in the past three years, including $10 million alone in the last three months of 2017.

For this campaign, which began last February, the researchers say attackers purchased Google Adwords to "poison user search results" and direct them to attacker-controlled phishing sites designed to separate them from their cryptocurrency.

"Cisco identified an attack pattern in which the threat actors behind the operation would establish a 'gateway' phishing link that would appear in search results among Google Ads," the Cisco Talos researchers say. "When searching for crypto-related keywords such as 'blockchain' or 'bitcoin wallet,' the spoofed links would appear at the top of search results. When clicked, the link would redirect to a 'lander' page and serve phishing content in the native language of the geographic region of the victim's IP address."

At one-point last February, Cisco reports that DNS queries for the gang's fake cryptocurrency sites exceeded 200,000 queries per hour. A significant number of them came from Nigeria, Ghana and Estonia, leading researchers to suggest that attackers were attempt "to target potential victims’ African countries and other developing nations where banking can be more difficult, and local currencies much more unstable compared to the digital asset."

Cisco says it's been sharing intelligence on the operation with Cyberpolice Ukraine. DNS queries for "block-clain.info" domain. (Source: Cisco Talos)
Many of the phishing sites use real-looking but fake domain names - referred to as "typosquatting" or brand spoofing - for example featuring a word such as "blockclain" - instead of "blockchain" - in the URL, Cisco says. Such typos could be especially effective on users whose first language is not English or for anyone who's using a mobile device, researchers say.

More recently, Cisco Talos reports that attackers have been refining their campaign by making their phishing sites look more legitimate. "A few months after we began tracking this particular group, we observed them starting to use SSL certs issued by Cloudflare and Let's Encrypt," the researchers say. "SSL certificate abuse has been a rising trend among phishing campaigns in general." (Darknet Vendors Sell Counterfeit TLS Certificates).

This is simply an example of how social engineering can be used to in the realm of cryptoeconomics to embezzle people of their digital assets. It is advised that you do not participate in activities that seem malicious.


Comments

Post a Comment

Popular posts from this blog

What is Mimblewimble?

Image
Tested for decades, Mimblewimble uses elliptic-curve cryptography that requires smaller keys than other cryptography types. In a network that is using the Mimblewimble protocol, there are no addresses on the blockchain, and the network’s data storage is highly efficient. Mimblewimble needs about 10% of the data storage requirements of the Bitcoin network. This makes Mimblewimble highly scalable for storing the blockchain , significantly faster, and less centralized. Furthermore, the nature of the protocol allows for private transactions that are highly anonymous (more about this later). The birth of Mimblewimble Rejoice, Harry Potter fans! Another reference is coming from the movie fan world. The Mimblewimble Whitepaper   was first published on July 2016 in the Bitcoin research channel under the anonymous author name of Tom Elvis Judisor – the French name for Voldemort. Soon after the whitepaper was published – at the end of 2016 -, another anonymous user wit...
Read more

Use XcelToken Plus and visit great Nordic Fintech conference in Copenhagen!

Image
XcelToken Plus is adopted into usage on XcelTrip - an online travel booking platform where you can check-in at over 800,000 hotels and book tickets with over 400 airlines. But also XcelTrip has special offer for Blockchain & Crypto Influencers around the world. Book COPENHAGEN FINTECH WEEK 2019 Event via XcelTrip, just select the Departure airport Kastrup or Roskilde and Date of travel using XcelToken Plus. This year, Copenhagen FinTech Week welcomes more than 1000 attendees from all continents. Great opportunity to take part in sharing insights with the 60+ international Blockchain speakers gathered from over 15 different countries, to join keynotes and panels tackling hot Tech topics. Immerse yourself in the networking sessions and workshops which crafted for you, meet fantastic fintech startups showcasing and pitching on stage. The Copenhagen FinTech Week 2019 will be home to the brightest fintech minds from all over the world. Get the chance to network, exchang...
Read more

5 Things You Must Know About Croatian Culture

Image
Culture is everything in the Balkans. Croatian culture gets drummed into young people from an early age, an obvious hangover of centuries of occupation and having to fight for national existence. There is plenty to love in the culture, however, especially if you’re into red-and-white checkerboards. What makes the Croats stand out from the pack? In a part of the world where languages intertwine, and much of history is shared, it is culture that separates the Croats from their Slavic brethren. Here are the 5 things you must know about Croatian Culture before vacationing there: Red-and-white checkered everything If there is one thing that is synonymous with Croatia, it is the distinct red-and-white checkerboard design that is ubiquitous here. Whether it is adorning the jerseys of national sports teams, the faces of supporters or practically every flag in the country, there is nothing more Croatian than what the local people call the šahovnica (chessboard). The šahovnica has been ...
Read more