Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,176
- Points
- 113
Cybercriminals have created more than 600 fake websites to steal Telegram accounts.
From May to July, F. A. C. C. T. researchers found more than 600 fake resources disguised as the clicker game Hamster Kombat and designed to hijack Telegram accounts. A representative of the company told Vedomosti that attackers create phishing sites where users are offered to use the "official" bot to sell game coins or withdraw funds. The user needs to log in via Telegram, after which his account is in the hands of scammers.
Another threat is drainers-programs that allow attackers to gain access to victims ' crypto wallets and withdraw digital assets from there. A representative of F. A. C. C. T. explains that to withdraw bonuses from the game, players can link their TON wallet to a phishing application, which gives attackers full control over the wallet.
A similar pattern of theft is observed in other popular clicker games, such as Blum. In this game, users are invited to catch falling objects, complete tasks and invite new users. For this, igoroki receive Blum Points, which, as promised by the game developers, will be converted into tokens. Over the past three months, F. A. C. C. T. analysts have identified more than 250 fake resources for this game. For example, the user is invited to participate in a promotion with a drawing of the internal currency. After linking a crypto wallet to such an application, users lose all their assets.
The new project DOGS, launched in early July, also came to the attention of scammers. In the game, users are awarded coins for the "age" of their Telegram accounts. The older the account, the more in-game currency the user gets. Despite the novelty of the project, over the past two weeks, about 20 phishing resources have been detected. Users are offered to connect a wallet to receive a reward. "For example, users with a ten-year account receive about 9,000 coins when registering in the bot. After that, the transaction needs to be confirmed, and supposedly after that, the coins will be instantly delivered to the user's wallet. However, in fact, the wallet is in the hands of scammers, the source said.
The game Notcoin, which appeared in early 2024 and offers to earn NOT tokens, also became the object of attention of intruders. From May to July, analysts identified more than 1,000 fraudulent resources on Notcoin. A representative of the F. A. C. C. T. explained that on fake sites, victims are offered to participate in $NOT sweepstakes. On the resources, victims are invited to connect their wallet to receive a reward, after which the user can lose all their assets.
To combat phishing, analysts initiated the process of blocking identified resources in the .ru, .rf, and .su domain zones. From the beginning of May to the end of July, BI specialists.Zone found more than 2,500 domains with a mention of the word hamster, including both legitimate and fraudulent pages. BI. Zone noted that the attackers are still interested in Notcoin: since the beginning of the year, 900 domains with the mention of the word notcoin have been identified.
According to Kaspersky Lab, in the first half of 2024, the number of attempts by Russian users to switch to phishing resources disguised as Telegram increased by almost 22% compared to the same period last year. Stolen accounts are used for multi-stage fraud schemes, sending messages to the victim's contacts, stealing confidential data, and blackmail. Through a Telegram account, scammers can gain access to the Telegram Wallet cryptocurrency wallet.
Experts note that the growing interest in cryptocurrencies and the popularity of clicker games provoked an increase in the number of hacks of such programs. It is difficult to estimate the number of real victims, as many users do not report account theft. The potential audience of scammers is about 3 million Telegram users with premium subscriptions and linked wallets.
Traditional phishing schemes also find their place among clicker games and continue to gain popularity. For example, scammers offer users to invite a friend to the game, promising bonuses or rewards for this. After that, they require the user to pay for "cheating" the number of invited friends in order to allegedly get more bonuses. However, after receiving the money, the scammers disappear and stop responding to messages without fulfilling their promises. As a result, users are left without the promised rewards and lose their funds.
The hype around clickers will depend on the development of gamification and game functionality. In the future, interest in such games may continue or even increase, due to the possibility of earning a small income and the interest of developers in promoting their products. However, the growing number of fraudulent resources may scare off some players, which will affect the popularity of these games.
Source
From May to July, F. A. C. C. T. researchers found more than 600 fake resources disguised as the clicker game Hamster Kombat and designed to hijack Telegram accounts. A representative of the company told Vedomosti that attackers create phishing sites where users are offered to use the "official" bot to sell game coins or withdraw funds. The user needs to log in via Telegram, after which his account is in the hands of scammers.
Another threat is drainers-programs that allow attackers to gain access to victims ' crypto wallets and withdraw digital assets from there. A representative of F. A. C. C. T. explains that to withdraw bonuses from the game, players can link their TON wallet to a phishing application, which gives attackers full control over the wallet.
A similar pattern of theft is observed in other popular clicker games, such as Blum. In this game, users are invited to catch falling objects, complete tasks and invite new users. For this, igoroki receive Blum Points, which, as promised by the game developers, will be converted into tokens. Over the past three months, F. A. C. C. T. analysts have identified more than 250 fake resources for this game. For example, the user is invited to participate in a promotion with a drawing of the internal currency. After linking a crypto wallet to such an application, users lose all their assets.
The new project DOGS, launched in early July, also came to the attention of scammers. In the game, users are awarded coins for the "age" of their Telegram accounts. The older the account, the more in-game currency the user gets. Despite the novelty of the project, over the past two weeks, about 20 phishing resources have been detected. Users are offered to connect a wallet to receive a reward. "For example, users with a ten-year account receive about 9,000 coins when registering in the bot. After that, the transaction needs to be confirmed, and supposedly after that, the coins will be instantly delivered to the user's wallet. However, in fact, the wallet is in the hands of scammers, the source said.
The game Notcoin, which appeared in early 2024 and offers to earn NOT tokens, also became the object of attention of intruders. From May to July, analysts identified more than 1,000 fraudulent resources on Notcoin. A representative of the F. A. C. C. T. explained that on fake sites, victims are offered to participate in $NOT sweepstakes. On the resources, victims are invited to connect their wallet to receive a reward, after which the user can lose all their assets.
To combat phishing, analysts initiated the process of blocking identified resources in the .ru, .rf, and .su domain zones. From the beginning of May to the end of July, BI specialists.Zone found more than 2,500 domains with a mention of the word hamster, including both legitimate and fraudulent pages. BI. Zone noted that the attackers are still interested in Notcoin: since the beginning of the year, 900 domains with the mention of the word notcoin have been identified.
According to Kaspersky Lab, in the first half of 2024, the number of attempts by Russian users to switch to phishing resources disguised as Telegram increased by almost 22% compared to the same period last year. Stolen accounts are used for multi-stage fraud schemes, sending messages to the victim's contacts, stealing confidential data, and blackmail. Through a Telegram account, scammers can gain access to the Telegram Wallet cryptocurrency wallet.
Experts note that the growing interest in cryptocurrencies and the popularity of clicker games provoked an increase in the number of hacks of such programs. It is difficult to estimate the number of real victims, as many users do not report account theft. The potential audience of scammers is about 3 million Telegram users with premium subscriptions and linked wallets.
Traditional phishing schemes also find their place among clicker games and continue to gain popularity. For example, scammers offer users to invite a friend to the game, promising bonuses or rewards for this. After that, they require the user to pay for "cheating" the number of invited friends in order to allegedly get more bonuses. However, after receiving the money, the scammers disappear and stop responding to messages without fulfilling their promises. As a result, users are left without the promised rewards and lose their funds.
The hype around clickers will depend on the development of gamification and game functionality. In the future, interest in such games may continue or even increase, due to the possibility of earning a small income and the interest of developers in promoting their products. However, the growing number of fraudulent resources may scare off some players, which will affect the popularity of these games.
Source
