Forum
OPRR
Finance
Specials
On-chain Eco
Entry
Podcasts
Data
Lost more than $1.3 billion, resumes fake wallet App scam
Summarized by AI
Slow Fog: Fake wallet apps have stolen tens of thousands of people and cost $1.3 billion
Slow fog AML, slow fog Technology
Xiao A recently received A text message from the exchange that the exchange is going to withdraw mainland users, and he is going to transfer cryptocurrency from the exchange to the wallet. So small A in the browser input "xx wallet official", click into the first link, download App- create wallet - transfer assets, done in one go. A few days later, Mr. A received notification that the transfer had been successful, and the balance in his wallet App -- $10 million worth of ERC20-USDT -- had gone to zero. Small A later realized that this App is fake, he downloaded to the advertising position of the phishing App. Small A in the friend's introduction, found us.
Focus on the victim
Little "A" isn't the first victim to find us.
As cryptocurrency continues to be heated up by the media, many passers-by rush into the cryptocurrency world without any foundation, spawns a series of fraud and theft incidents. As more and more victims came to us, we began to pay attention and collect information about the incident.
According to the information collection statistics of victims contacted by MistTrack, 61% of them were stolen due to downloading fake wallet App.
There are several ways to download a fake wallet App:
· Swindlers send posters or links to users to induce them to download fake apps;
· Swindlers lure users to visit fake official websites by buying advertising space and natural traffic from search engines;
· After gaining the victim's trust, the swindler sends the victim a link to download the App and encourages the victim to buy cryptocurrency and transfer it to their wallet. The swindler constantly makes excuses to ask the victim to deposit more money to withdraw funds.
The victims never got their money back.
Victim's case
According to one victim, the scammers first befriended the victims through group chats, then befriended them and, after gaining their trust, sent them links to the website they claimed to download. Let's compare the difference between official and phishing sites.
According to the information provided by the victim, the fake website, while realistic, always had some flaws. For example, the fake official website was called "IM&NBsp; Wallet ", fake official website can be seen everywhere download QR code. When the victim decides to download an App, scanning a QR code takes them to a page that mimics the App store and even has fake reviews to convince the victim that the wallet App is legitimate.
Track the
The AML team analyzed and studied the information provided by the victims who found us. According to incomplete statistics, there are tens of thousands of victims whose assets were stolen due to downloading fake apps, and the amount of stolen assets is up to 1.3 billion DOLLARS. This is only for the statistics of the victims who found us, and only includes & NBSP; ETH, BTC, ERC20-USDT, TRX, TRC20-USDT.
Below is information about the stolen wallet of a victim who approached us in November asking us to help.
One of the victims shared the Tron address to which his stolen funds were transferred (TDH... WRN), the scammer address has so far received more than 258,571 TRC20-USDT.
MistTrack tracked and analyzed the address of the swindler, and the results showed that a total of 14 people transferred funds to this address, which can be considered as victims. Meanwhile, each address of the inflow of funds has a large transaction volume, and the funds are divided into different Binance user addresses.
One of the Binance user addresses (TXJ... G8u) has received over 609,969.299 TRC20-USDT, worth over $610,000.
That's just one address, which gives you a sense of the scale of the scam and how much money the scammers make from their victims.
There is also an interesting point when we are analyzing some fraudulent addresses (such as BTC address 32q... Fia), it was found that the funds of this address were transferred to malicious addresses associated with extortion activities. According to the query results of some channels, this kind of scam seems not only to be committed by gangs, but even shows the characteristics of trans-provincial and transnational.
In addition, our analysis shows that scammers often muddle the analysis by moving some of their money to trading platforms and a smaller amount to a particularly high-volume hacker address.
conclusion
The scam is not only active, but is even expanding, with new victims falling victim to it every day. As the weakest link of the security system, users should always be suspicious, enhance security awareness and risk awareness, and can be verified through the official verification channel if necessary.
Meanwhile, if you need to use wallet, please be sure to check the official website of the following mainstream wallet App:
Welcome to join the official BlockBeats community:
Telegram Subscription Group: https://t.me/theblockbeats
Telegram Discussion Group: https://t.me/BlockBeats_App
Official Twitter Account: https://twitter.com/BlockBeatsAsia
