Dogecoin (DOGE) is yet again a victim of a scam. Analysts at Dr.Web cybersecurity firm tracked an online scammer stealing Dogecoin from multiple individuals. The firm notes that the scam runs through an elaborate chain of websites that tricks users into giving private information and then runs malware on their computers.
Writing on their website, the analysts at Dr.Web reveal that the scammer used a wide range of malware to infect computers. Further, the scammer used a range of nicknames that masked his/her identity.
Sophisticated Malware in Use by Scammer
Interestingly, some of the commercial trojans the scammer uses include “Eredel, AZORult, Kpot, Kratos, N0F1L3, ACRUX, Predator The Thief, Arkei, and Pony.” The analysts categorize the malware as stealers. Basically, these are malicious softwares that, when installed on a person’s computer, steal personal data like login details. Oftentimes, this scammer targeted login details for Dogecoin wallets and even cryptocurrency exchanges.
“The attacker’s arsenal also boasts the TeamViewer-based Spy-Agent backdoor, the DarkVNC and HVNC backdoors that access the affected computer via the VNC protocol, as well as a backdoor based on RMS,” the statement on the Dr Web website reads.
Further, Investimer, one of the aliases the scammer goes by, uses sophisticated pathways to gain control of an individual’s computer core functions. This enables the scammer to load more malicious software onto the victim’s computer to commit further damage.
Specifically, the statement notes that Investimer uses the “Smoke Loader and has previously used a Loader by Danij, as well as a miner Trojan with a clipper plug-in that changes the clipboard contents.”
Furthermore, the cybercriminal uses websites that mask IP addresses to host the servers for the trojan malware. Some of the named websites include jino.ru, marosnet.ru, and hostlife.net. Also, the statement notes that the websites enjoy protection by Cloudfare, a formidable cybersecurity service provider.
Interestingly, the scammer seems specifically interested in Dogecoin cryptocurrency. To this end, the statement notes that the scammer is running various websites targeting unsuspecting Internet users. Dubbed phishing websites, they facilitate the creation of online resources that mimic actual ones.
For instance, one phishing website replicates a cryptocurrency exchange and asks users to download special client software. However, this turns out to be just a Spy-Agent trojan in disguise. With the access to a user’s computer, the malware is able to render an individual’s PC subservient to the scammer.
Already, the online scammer stealing Dogecoin seems successful, The Next Web reports. Several fake websites by the scammer have thousands of users.
This article should not be taken as, and is not intended to provide, investment advice. Users are ultimately responsible for the investment decisions he/she/it makes based on this information. It is your responsibility to review, analyze and verify any content/information before relying on them. Trading is a highly risky activity. Do consult your financial adviser before making any decision. Please conduct your thorough research before investing in any cryptocurrency and read our full disclaimer.
Join our Telegram Group To Stay Up To Date With Crypto News