Deceptive Comments Under Tweets Facilitate Theft
The SlowMist Security team has uncovered a concerning trend in the crypto community. They have received multiple reports of theft, and upon investigation, they found that a significant number of these thefts were enabled by deceptive comments under tweets from well-known projects. In fact, approximately 80% of the comments under these tweets were identified as phishing scam accounts.
Phishing Tactics Exposed
In addition to the deceptive comments, SlowMist has also observed Telegram groups engaged in the sale of Twitter accounts. These groups offer accounts with varying follower counts, post numbers, and registration dates to cater to different buyer preferences. Websites specializing in the sale of Twitter accounts have also been discovered, featuring accounts from different years and offering options for purchasing accounts with usernames closely resembling legitimate ones.
Phishing groups acquire existing accounts and use promotional tools to enhance their credibility. These tools provide services like likes, shares, and follower boosts across major social platforms. Phishing groups then mimic the information and appearance of legitimate projects to deceive users.
Steps in a Phishing Operation
Phishing groups employ automated bots to track prominent projects’ activities on Twitter. These bots quickly comment on project tweets to gain visibility. Users who mistake these posts for legitimate ones are more vulnerable and may click on phishing links promising airdrops from fake accounts. This can lead to inadvertent authorization of malicious transactions and financial losses.
Prioritizing Security
To counter these phishing tactics, it is important to optimize anti-phishing plugins and browsers that can promptly warn users about accessing phishing pages. Wallet signature verification and interaction safety features are also crucial in protecting against scams. Users should verify transaction specifics and remain vigilant when scrutinizing links, authorizations, and signatures.
Hot Take: Protect Yourself from Phishing Scams
Phishing scams in the crypto community are on the rise, with deceptive comments under tweets being a common tactic. It is essential to stay vigilant and prioritize security measures to protect yourself from falling victim to these scams. Be cautious of suspicious links, verify transaction details, and utilize anti-phishing plugins and browser warnings. By staying informed and practicing personal security consciousness, you can mitigate the risk of financial loss and deception in the crypto space.