A blockchain analyst warned about a fake page of the HitBTC platform, on which scammers use phishing links to empty users’ cryptocurrency wallets
Hackers stole more than $15 million in various cryptocurrencies through a fake website. Which mimics the HitBTC cryptocurrency exchange page. This was reported by a blockchain security analyst at SlowMist. According to the company, scammers are stealing various cryptocurrencies, including bitcoin, Ethereum and USDT. They do this through a fake website that looks similar to the original exchange portal.
Analyst identified and published four cryptocurrency addresses of the attackers. He also explained that he discovered three ways in which hackers gain access to users’ wallets on this site.
The fake page may prompt users to verify the wallet’s connection. After a user clicks the Confirm button, hackers gain access to USDT tokens.
The second option was to go to the page for depositing funds, which is identical to the real page on the exchange. But in the field for the deposit address entered data hackers. In this case, they rely on the fact that the information in the standard fields will not be double-checked by the account owner.
In the third case, the scammers take advantage of the fact that the sidebar to sign the transaction on the site pops up automatically. And with the data already completely filled in, which are also usually not double-checked. When the user clicks on the transaction confirmation button, the hackers gain access to the assets.
Our experts point out that in February of this year, hackers spoofed the website of a major cryptocurrency conference. Where they offered users to connect MetaMask wallets and make a transaction that debited funds. To promote their site, the scammers even paid for advertising on Google. And rose to second place in search for a while.