The encryption theft amounted to $ 163 million in August, when the infiltrators distributed more advanced methods and hitting the exploitation of cryptocurrencies. The shift in tactics highlights a wider direction in electronic crimes, as attackers benefit from social engineering and fake platforms to extract digital assets from reassuring victims. The prominent cases are the spread of “Scambling” sites – online Gambling Platforms – which rose in the number during the past month. These sites tempt users with promises of free credits and attractive games, only for their hide [1].
The same fraudulent gambling sites are often promoted by deceptive advertisements on social media platforms, claiming that they are affiliated with well -known personalities or brands. Users are lured with a “promotional code” that gives them $ 2,500 in virtual credits to play on sites. However, as soon as users try to spend any profits, they are required to create a “verification deposit” from the encrypted currency, usually about $ 100. These sediments are rarely returned, and users are often forced to pay additional payments until they lose all the invested money [1].
Behind these fraud, there is a Russian follow -up program called “Gambler Panel”, which works as a central process and provides fraud tools and strategies for thousands of subsidiaries. The program stimulates the subsidiaries to push traffic to these sites, where some get at least $ 10 for each verification deposit. The gambling board contains more than 20,000 subsidiaries and provides a detailed book to increase profits from each victim [1].
The infrastructure that supports these fraud sites is very developmental, as it was reported, the entity runs more than 1,200 fields, all of which use common technical elements such as the joint API programming interface for chat manuscripts and central support systems. The sites are also designed to prevent users from recording multiple accounts from the same IP address or device, ensuring that each fraud is performed on one basis to one. [1].
A developer who investigated the fraud network indicated that operators use unique Bitcoin A wallet for each field, which is likely to serve as a trap to hide the real financial flow. Customer support attempts are often dealt with by a mixture of self -factors and human operators, who ultimately prevent the user. These tactics emphasize the development of the process and the difficulty of tracking financial transactions [1].
With the development of the threat scene, cybersecurity experts warn that these fraud are part of a broader shift in how Internet criminals work. Traditional hunting and ddos attacks are increasingly replaced by more targeted and misleading ways that take advantage of the user’s confidence in digital platforms. The spread of fraudulent gambling sites represents this trend, and more of these operations will appear unless the platforms and organizers take stronger measures to reduce these threats. [1].
source:
[1] Krebs on Security- in-depth security and investigation news (https://krebsonsecurity.com/)
