Several social media accounts and fake websites pretended to be selling the popular hacking tool Flipper Zero in an attempt to lure cybersecurity experts into trading cryptocurrencies.
This new campaign of angler phishing, a type of social media phishing that interacts with customers by impersonating a company’s social media accounts, was first spotted by security researcher Dominic Alvieri on December 2, 2022.
I’m Twitter, I’m Albieri warned Three different Twitter accounts and two websites impersonating official Flipper Zero sellers to trick potential buyers into sending cryptocurrencies.
At first glance, one Twitter account looked very similar to the official Flipper Zero. However, upon closer inspection, researchers discovered that the bogus account’s handle used an uppercase ‘I’ instead of an ‘l’. After the “F”.
The attackers appear to use a variety of methods, including linking shop checkout pages to Bitcoin and Ethereum wallets and using plisio.net invoices to accept cryptocurrency payments.
Flipper Zero is a small cybersecurity tool that looks like a child’s toy, but it can be used by hackers, pentesters and cybersecurity enthusiasts alike, with RFID emulation, digital access key cloning, wireless communication, NFC, infrared, Bluetooth, and more. provide to .
Launched in 2020 through a Kickstarter campaign and received a pledge of $4,882,784. That’s 81 times his $60,000 the company wanted.
Over the past year, however, the product has been plagued with production problems, causing supply shortages and the inability to meet the still-increasing demand.
September 2022, Earning hold With its digital payment platform, PayPal has put the project in jeopardy and its production by holding $1.3 million that it plans to order a new production batch.
Attackers are exploiting the gap between high demand and low supply.
As of this writing, one online shop and two of the three fake Twitter accounts are still operational.
