Hamster Kombat players are in danger: experts have uncovered two fraud schemes

Analysts at F.A.C.C.T. discovered a large-scale fraudulent campaign associated with the Web3 Hamster Kombat game project. According to experts, malicious activity covers two phishing areas: access to cryptocurrency wallets and account takeover.

Attackers use drain programs that allow them to quickly withdraw funds from victims’ cryptocurrency wallets to their accounts. Fraudsters offer assistance in crediting bonuses to a wallet on The Open Network (TON), unaware of the risks.

By linking a wallet, players give attackers full access to their funds and transactions in the wallet. This can lead to a quick withdrawal of all assets.

The second scheme involves scammers sending phishing links and asking players to log into Telegram to launch the bot. As soon as the user clicks on the link, access to the account passes into the hands of attackers.

Fraudsters use stolen profiles to further phishing attacks and distribute malware.