Multichain Inferno Drainer Abuse Web3 Protocols

A cryptocurrency-related phishing scam that uses malware called a drainer is one of the most widely used tactics these days.
From November 2022 to November 2023, 'Inferno Drainer', a well-known multichain cryptocurrency drainer, was operational under the scam-as-a-service paradigm.
On sophisticated phishing websites, victims were deceived into linking their cryptocurrency wallets to the attackers' infrastructure.
Group-IB found that at least 100 distinct cryptocurrency brands were impersonated on more than 16,000 distinct domains connected to Inferno Drainer's phishing activities.
Compounding the problem are zero-day vulnerabilities like the MOVEit SQLi, Zimbra XSS, and 300+ such vulnerabilities that get discovered each month.
Malicious scripts observed in Inferno Drainer impersonated well-known Web3 protocols to link cryptocurrency wallets and obtain permission from the user to approve a transaction.
The hackers used prominent Web3 protocols, including Coinbase, WalletConnect, and Seaport, as a way to launch fraudulent transactions.
According to its website, Seaport is a Web3 marketplace protocol developed by OpenSea for effective and secure NFT trading.
Coinbase and WalletConnect are protocols that enable self-custody cryptocurrency wallets to connect with Web3 decentralized apps.
A user must manually approve transaction requests in their wallet after approving a DApp's connection request.
To win a prize or other money reward, users are asked to link their accounts and authorize a transaction, but by doing so, they expose themselves to getting fraudulent transaction requests from the operators of the drainer.
The malware was uploaded to websites posing as official cryptocurrency token projects and propagated over Discord and X. Although the developer has now closed down Inferno Drainer, its popularity over the last 12 months has created many opportunities for criminals to accumulate wealth.
Its clients are still using it, and there's no indication that their desire to steal NFTs and tokens has diminished.
When connecting your wallets, use caution and avoid pursuing free tokens and NFT giveaways known as airdrops.
The only way to stop similar attacks in the future is to conduct thorough investigations and bring offenders accountable.
Victims must report their attacks to the appropriate law enforcement authorities.
Try Kelltron's cost-effective penetration testing services to evaluate digital systems security.


This Cyber News was published on gbhackers.com. Publication date: Thu, 18 Jan 2024 15:13:04 +0000


Cyber News related to Multichain Inferno Drainer Abuse Web3 Protocols

Multichain Inferno Drainer Abuse Web3 Protocols - A cryptocurrency-related phishing scam that uses malware called a drainer is one of the most widely used tactics these days. From November 2022 to November 2023, 'Inferno Drainer', a well-known multichain cryptocurrency drainer, was operational under ...
10 months ago Gbhackers.com
Learning To Use Web3: First Impressions - Come along with me as I learn about blockchain and web3: the good, the bad, why it's needed, how to learn it, and, in the end, if it's really what it's hyped up to be. Web3's potential to transform how businesses transact and perform merits ...
11 months ago Feeds.dzone.com
$80M in Crypto Disappears Into Drainer-as-a-Service Malware Hell - According to Group-IB, the attackers hosted the phishing pages using more than 16,000 unique domains over the course of the campaign, which ran between November 2022 and November 2023, after which it was disrupted. While Inferno Drainer may have ...
10 months ago Darkreading.com
How a 'crypto drainer' tricked people into handing over $80 million in assets worldwide - Researchers have detailed how a scam campaign spoofed over a hundred cryptocurrency brands in the past year, stealing at least $80 million in assets from its victims' digital wallets. The researchers warn that the software and those users still pose ...
10 months ago Therecord.media
This Startup Aims To Simplify End-to-End Cybersecurity, So Anyone Can Do It - The Web3 movement is going from strength to strength with every day that passes. For all of its promises, Web3 has become an incredibly dangerous place to navigate, with the industry ceaselessly being targeted by cybercriminals, hackers and ...
7 months ago Gbhackers.com
Hundreds of Thousands of Dollars Worth of Solana Cryptocurrency Assets Stolen in Recent CLINKSINK Drainer Campaigns - On January 3, 2024, Mandiant's X social media account was taken over and subsequently used to distribute links to a cryptocurrency drainer phishing page. The following blog post provides additional insight into the drainer leveraged in this campaign, ...
10 months ago Mandiant.com
Mandiant's X account hacked by crypto Drainer-as-a-Service gang - The threat actor who took over Mandiant's X social media account used it to share links, redirecting the company's over 123,000 followers to a phishing page to steal cryptocurrency. As Mandiant found during a follow-up investigation into the ...
10 months ago Bleepingcomputer.com
Crypto drainer steals $59 million from 63k people in Twitter ad push - Google and Twitter ads are promoting sites containing a cryptocurrency drainer named 'MS Drainer' that has already stolen $59 million from 63,210 victims over the past nine months. According to blockchain threat analysts at ScamSniffer, they ...
10 months ago Bleepingcomputer.com
Web3: Championing Digital Freedom and Safeguarding Liberty in the Modern Era - In an era defined by technological progress shaping our daily lives, Web3 emerges as a beacon of hope and promise, akin to early American pioneers like Thomas Jefferson who established governance systems to safeguard public liberty. Going beyond mere ...
10 months ago Cysecurity.news
Cyber-Attacks Drain $1.84bn from Web3 in 2023 - Cyber-attacks targeting Web3 cost organizations $1.84bn in 2023 across 751 incidents, according to Certik's Hack3d: The Web3 Security Report 2023. The average cost per incident was $2.45m in 2023. There was a wide disparity between the losses ...
10 months ago Infosecurity-magazine.com
Netgear, Hyundai latest X accounts hacked to push crypto drainers - The official Netgear and Hyundai MEA Twitter/X accounts are the latest hijacked to push scams designed to infect potential victims with cryptocurrency wallet drainer malware. While Hyundai has already regained access to their account and has cleaned ...
10 months ago Bleepingcomputer.com
Crypto Drainer Steals $59m Via Google and X Ads - A crypto drainer is a type of malware that tricks the user into approving a transaction which then automatically drains their cryptocurrency wallets. Scam Sniffer revealed that one particular version, MS Drainer, was behind the new spate of attacks. ...
10 months ago Infosecurity-magazine.com
Hackers Stolen Over $58 Million Crypto Via Malicious Google Ads - Threat actors targeting crypto wallets for illicit transactions have been in practice for quite some time. Threat actors have been using Wallet Drainers for such cybercrime activities, which have seen great success in recent years. Several techniques ...
10 months ago Gbhackers.com
"Pink Drainer" Siphons $4.4 Million Chainlink Through Phishing - Pink Drainer, the infamous crypto-hacking outfit, has been accused in a highly sophisticated phishing scheme that resulted in the theft of $4.4 million in Chainlink tokens. This recent cyber crime targeted a single victim who was duped into signing a ...
10 months ago Cysecurity.news
Security Firm Certik's Account Hijacked to Spread Crypto Drainer - A Web3 security vendor was tricked by a social media phishing attack which hijacked its account and enabled scammers to share a link to a malicious website, it has emerged. That link was up for just 15 minutes, but it's unclear whether any of the ...
10 months ago Infosecurity-magazine.com
US SEC's X account hacked to announce fake Bitcoin ETF approval - The X account for the U.S. Securities and Exchange Commission was hacked today to issue a fake announcement on the approval of Bitcoin ETFs on security exchanges. The announcement came this afternoon in a now-deleted tweet from the SEC's hacked X ...
10 months ago Bleepingcomputer.com
Navigating the Perilous Waters of Crypto Phishing Attacks - Key Highlights: Check Point Research Unveils Rise in Sophisticated Crypto Phishing: An investigation reveals an alarming increase in advanced phishing schemes targeting a variety of blockchain networks, employing wallet-draining techniques. ...
10 months ago Blog.checkpoint.com
Exploring the Digital World in 2023 - Web3 is the future of the internet, and it is being claimed that it is the future today. We will look at the characteristics of web3, such as decentralization and the metaverse, and how they will shape the future. One of the components of web3 is ...
1 year ago Securityweek.com
Web3 security firm CertiK's X account hacked to push crypto drainer - The Twitter/X account of blockchain security firm CertiK was hijacked today to redirect the company's more than 343,000 followers to a malicious website pushing a cryptocurrency wallet drainer. Crypto fraud sleuth ZachXBT later leaked screenshots of ...
10 months ago Bleepingcomputer.com
X users fed up with constant stream of malicious crypto ads - Cybercriminals are abusing X advertisements to promote websites that lead to crypto drainers, fake airdrops, and other scams. Like all advertising platforms, X, formerly known as Twitter, claims to show advertisements based on a user's activity, ...
10 months ago Bleepingcomputer.com
CVE-2007-3687 - SQL injection vulnerability in inferno.php in the Inferno Technologies RPG Inferno 2.4 and earlier, a vBulletin module, allows remote authenticated attackers to execute arbitrary SQL commands via the id parameter in a ScanMember do action. ...
7 years ago
How many types of Network Security protocols exist - Network Security protocols are designed to safeguard computer networks from unauthorized access, data breaches, and other cyber threats. Secure Sockets Layer / Transport Layer Security: SSL and its successor TLS are cryptographic protocols that ...
9 months ago Cybersecurity-insiders.com
Nest Wallet CEO Loses $125,000 in Wallet Draining Scam - The co-founder and CEO of a startup cryptocurrency wallet said he lost $125,000 in crypto in a scam, becoming among the latest victims of the growing threat of wallet drainer malware that one cybersecurity firm stole almost $300 million from more ...
10 months ago Securityboulevard.com
Mandiant's X Account Was Hacked in Brute-Force Password Attack - Cyber threat intelligence giant Mandiant has shared the result of its investigation on its recent X account hijacking following a wave of crypto-related X account hacks. On January 3, 2024, the X account of Mandiant, a subsidiary of Google Cloud, was ...
10 months ago Infosecurity-magazine.com
Ledger dApp supply chain attack steals $600K from crypto wallets - Ledger is warnings users not to use web3 dApps after a supply chain attack on the 'Ledger dApp Connect Kit' library was found pushing a JavaScript wallet drainer that stole $600,000 in crypto and NFTs. Ledger is a hardware wallet that lets users buy, ...
11 months ago Bleepingcomputer.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)