- Cofense warns an ongoing phishing campaign
- Threat actors are the identity of the binance and promise their victims
- Victims are encouraged to download Connectwise Rat
Cybercriminals take advantage of “the enthusiasm of the Trump room to steal people’s information and possibly other cryptocurrencies, warned Cofense.
Earlier this year, US President Donald Trump launched a “same” (a cryptocurrency play for pleasure) called $ Trump. After its launch, the price of the token climbed more than 300% of the day.
In two days, he became the 19th most precious cryptocurrency in the world, with a total negotiation value approaching $ 13 billion on the basis of $ 64 per token for the 200 million tokens issued by the afternoon of January 19.
Rat Connectwise
These types of events are gold opportunities for cybercriminals. As reported by Cofense, threat actors have made a false Binance website which – although not perfect – does a good job to pretend to be the popular exchange of cryptocurrency. The attackers then sent phishing emails, telling their victims that they could redeem recently created $ Trump Coins, but only if they move quickly and download “Binance Desktop”.
Instead of really obtaining the office customer from the exchange, the victims would install the RAT Connectwise – an formerly legitimate remote office manager (RDM) operated by cybercriminals to act as malicious software. As soon as the false software is installed, the attackers are moving forward and tried to resume the aircraft.
It is somewhat unusual, said Cofense, because in most cases of Rat Connectwise, the threat actor would interact with the victim after a certain time. In all cases, the rat is then used to exfiltrate the recorded passwords in Microsoft Edge and other programs and applications supported by the Troy.
Phishing campaigns often take advantage of current events because they help create a feeling of urgency. Quick sales tickets for events such as the Olympic Games or the World Cup, Black Friday offers or cryptocurrency tokens increasing prices quickly, can trigger Fomo with consumers, making ideal foundations for a scam campaign.
