Security researchers have uncovered a new phishing campaign designed to hijack Twitter and Discord accounts for the purpose of stealing cryptocurrencies.
Scam Sniffer used blockchain analysis to detect the Pink Drainer hacking group. The group now claims he has stolen more than $3 million from more than 2,000 victims, including celebrities such as OpenAI CTO Mira Murati. I’m here.
Cryptocurrency Attack Details: Clipboard Injector Attack Targeting Cryptocurrency Users
The social engineering techniques used are anomalous. Scammers pose as journalists from media such as Decrypto and her Cointelegraph to gain the trust of their victims.
“This process typically lasted one to three days, but eventually required KYC verification and incorporated Discord-related phishing into the final process,” explained Scam Sniffer.
“For example, convincing a Discord admin to open a malicious Carl verification bot and add a bookmark containing malicious code.”
The malicious code in question is designed to steal the victim’s Discord token and give the hacker access to the victim’s account. They delete other admins, set themselves as admins, and then commit a “violation” where the account is blocked by her Discord.
As of this writing, the Pink Drainer group has compromised 2,307 victims and stolen nearly $3.3 million, including $300,000 from one individual.
Discord accounts are becoming an increasingly popular target for hackers. Last year, researchers discovered a malicious npm package designed to steal Discord tokens and card data.
In another incident in May of this year, Discord itself was targeted after attackers compromised the support ticket queue of a third-party customer service agent.
