Bitcoin scam exposes the personal details of 250,000 people

The UK and Australia represent approximately 93% of users hit by the crypto-scam

A cryptocurrency investment scam has exposed the personal details of hundreds of thousands of people around the world. 

Group-IB, a Singapore-based intelligence company, uncovered the stolen personal records of 248,926 people from the UK, Australia, South Africa, Spain, Singapore, the US, Malaysia and other countries. 

The United Kingdom and Australia represent approximately 93% of all affected users. 

It’s not known exactly where or how the leak originated, but Group-IB has discovered that it’s being used in a multi-stage cryptocurrency investment scam that comes at the victims in three phases. 

To begin with, the target receives a text message that is masked as a local media outlet. The link bears a headline boasting that a celebrity endorses a new get-rich-now investment, and each text message also contains a short, unique link.

When the target clicks the link, they are taken to a fake news website that displays a long, personalized URL that includes the target’s name, phone number, and sometimes, email address. 

The fake news site shows made-up content about a particular celebrity who made a fortune with a new cryptocurrency investment platform. Celebrities whose names and images were stolen for this scam include Bryan Wong, Travers ’Candyman’ Beynon, Gina Rinehart, Andrew Forrest, Chris Brown and others. 

The use of celebrity names and images to promote scams is nothing new. Earlier this month Elon Musk’s name was used in a Bitcoin giveaway scam

If the target clicks on that second link, they are taken to a fake cryptocurrency investment platform site where their personal information is already preloaded into the signup form. If they join, they are then asked to add to their account using cryptocurrency. 

Group-IB detected six active domains that offer the same Bitcoin investment platform but operate under different names including Crypto Cash, Bitcoin Supreme, Bitcoin Rejoin and Banking on Blockchain. 

Group-IB CEO, Ilya Sachkov, states in the company’s report on the scam: “The bad guys got smarter in a bid to increase the success rate of their fraudulent operations. Using personal data allows them to carry out targeted attacks and make a victim’s journey easier and smoother, which levels up the overall effectiveness of the scheme.”

The firm has shared its findings with the appropriate law enforcement groups in the affected countries for further investigation. 

Featured Resources

The complete guide to changing your phone system provider

Optimise your phone system for better business results

Download now

Simplify cluster security at scale

Centralised secrets management across hybrid, multi-cloud environments

Download now

The endpoint as a key element of your security infrastructure

Threats to endpoints in a world of remote working

Download now

2021 state of IT asset management report

The role of IT asset management for maximising technology investments

Download now

Recommended

What is blockchain?
Security

What is blockchain?

15 Oct 2020
Steve Wozniak sues YouTube over Bitcoin scam videos
cryptocurrencies

Steve Wozniak sues YouTube over Bitcoin scam videos

24 Jul 2020
Encrypted messaging site Privnote cloned to steal Bitcoin
encryption

Encrypted messaging site Privnote cloned to steal Bitcoin

15 Jun 2020
Coinbase announces the acquisition of Tagomi
cryptocurrencies

Coinbase announces the acquisition of Tagomi

28 May 2020

Most Popular

Microsoft CEO warns of video call fatigue
video conferencing

Microsoft CEO warns of video call fatigue

7 Oct 2020
Raspberry Pi Compute Module 4 launches with PCIe support
Hardware

Raspberry Pi Compute Module 4 launches with PCIe support

19 Oct 2020
Google blocked record-breaking 2.5Tbps DDoS attack in 2017
Security

Google blocked record-breaking 2.5Tbps DDoS attack in 2017

19 Oct 2020