Players of the wildly popular mobile game Hamster Kombat are finding themselves the targets of increasingly sophisticated phishing attacks.
The Telegram-based game, which has rapidly amassed a massive user base, is being exploited by scammers looking to cash in on its viral success.
Phishing Attacks Exploiting Hamster Kombat Popularity
Hamster Kombat, known for its tap-to-earn gameplay, has drawn in 239 million users in just 81 days, with a staggering 4-5 million new players joining daily. This meteoric rise has not gone unnoticed by cybercriminals. Recently, cybersecurity firm Kaspersky uncovered a series of fraudulent schemes specifically targeting the game's players.
Olga Svistunova, a security expert from Kaspersky, highlighted the severity of the situation in a statement a recent interview:
“Our team has exposed a series of fraudulent schemes targeting users of Hamster Kombat. In one scheme, scammers lure victims with promises of converting in-game coins to rubles through phishing links that require Telegram login credentials.”
These phishing attacks are alarmingly effective. Once users enter their credentials, attackers gain access to personal accounts, enabling them to steal data, engage in blackmail, and send fraudulent messages. While the primary target appears to be players in Russia, Svistunova warned that fraudsters from other regions could adopt similar tactics.
Rise of Fake Crypto Airdrops and Websites
The allure of free cryptocurrency has also become a tool for scammers. Kaspersky reports that fake Hamster Kombat airdrops are being used to trick users into divulging their crypto wallet credentials. These fraudulent airdrops promise enticing rewards but lead to phishing sites designed to steal valuable information.
“Scammers exploit the allure of free cryptocurrency by offering fake airdrops of Hamster cryptocurrency, aiming to steal crypto wallet information,” Svistunova explained. Additionally, fraudsters have set up phishing sites claiming to sell Hamster cryptocurrency at a discount, further deceiving users into compromising their crypto wallets.
The Impact of Scams on the Crypto Industry
These incidents are part of a broader trend of cyberattacks plaguing the cryptocurrency industry. Over the past 13 years, nearly $19 billion worth of digital assets have been stolen across 785 reported hacks and exploits. The largest single theft remains the 2019 Plus Token fraud, where attackers made off with $2.9 billion in Bitcoin and Ether.
Phishing scams, in particular, have seen a dramatic rise. For instance, phishing attacks on the Base blockchain surged by 1,900% in March compared to January, resulting in an 18-fold increase in stolen crypto.