Earlier today on 14th June, renowned security news media ‘KrebsOnSecurity’ alerted its readers of a fake version of Privnote.com, a well-liked website for transferring encrypted self-destructing messages, that’s even capable of stealing Bitcoin [BTC].
The individuals behind this phishing scam are able to replace all Bitcoin addresses with their own to trick the users into transferring them actual BTC.
Scamming Bitcoin Addresses
Scammers simply use the plural of the domain ‘privnote,’ making it very challenging to differentiate at the very first look. It’s also common for malicious actors to prey on their potential victims with the assistance of misspellings, hyphenations, or even alternative extensions.
All messages sent with the assistance of privnotes.com that are indeed aren’t encrypted, which means that they can be easily accessed by the website’s owners.
In fact, a selected script is employed for automatically finding all notes containing Bitcoin addresses and then further modifying them.
While Privnotes.com could possibly be used for stealing all types of information, cybersecurity analyst Allison Nixon revealed that pilfering Bitcoin is the main purpose of the sham. Adding further he said:
At first, i assumed that was their whole angle, just to siphon data. But the bitcoin wallet replacement is perhaps much closer to the most motivation for running the fake site.
Common Phishing Scams
Phishing scams remain one among the foremost popular ways of swindling money out of crypto users who aren’t attentive or tech-savvy enough to note the difference.
Recently, entrepreneur Eric Savics lost all of his Bitcoin savings around $113k after providing his seed phrase into a malicious KeepKey extension for Google Chrome.