Crypto investors in India have lost over $128 million (nearly Rs 1,000 crore) due to a sophisticated phishing scam that includes fake cryptocurrency exchanges. This scheme was uncovered by cybersecurity firm CloudSEK who said the operation involved malicious domains and Android applications.
CEO of CloudSEK, Rahul Sasi said, “We estimate that threat actors have defrauded victims of up to $128 million (about Rs 1,000 crore) via such crypto scams,”
According to the report, many of the fake websites were impersonating CoinEgg, a UK-based crypto exchange:
“This large-scale campaign entices unwary individuals into a huge gambling scam. Many of these bogus websites impersonate “CoinEgg”, a legitimate UK-based cryptocurrency trading platform,”.
The scam works by the fraudsters buying domain names that are very similar to the websites they want to impersonate. They then go on to build websites that look visually similar to the target website, from the frontend design to the user dashboard.
Potential victims are found via social media where the fraudsters create fake accounts with female names and profile pictures. They use these accounts to convince unsuspecting users into trading and investing in cryptocurrency via the fake exchanges. $100 dollar credits are offered in an attempt to entice the users into joining the fake trading platforms:
“The profile also shares $100-dollar credit, as a…
