Crypto Investor Falls for Elaborate Social Engineering Trap
20.06.2025 17:00 2 min. read Alexander Stefanov
A well-known investor at crypto VC firm Hypersphere has fallen victim to an elaborate phishing attack that wiped out a substantial portion of his personal savings.
The scam, which unfolded through a fake Zoom call, highlights the increasing precision of social engineering tactics targeting professionals in the digital asset space.
Mehdi Farooq revealed that the incident began when he received a seemingly harmless message from a familiar name on Telegram. The impersonator, posing as someone Farooq had previously interacted with, arranged a meeting and later switched to Zoom Business, citing compliance reasons. The attackers cleverly added another trusted name to increase credibility.
Once on the Zoom call, Farooq was prompted to install an “audio fix” update after encountering sound issues. That update turned out to be malware. Within minutes, hackers accessed his system, drained six crypto wallets, and continued chatting via Telegram as if nothing was wrong.
Farooq later confirmed the original Telegram account had been compromised. He linked the attack to a group associated with North Korea, known online as “dangrouspassword.”
This case joins a growing list of incidents involving high-level crypto professionals. Just weeks earlier, scammers sent fake Ledger-branded letters via USPS to trick users into scanning phishing QR codes. In another case, $330 million worth of BTC was stolen from an elderly victim using a similar phishing approach.
Experts warn that as crypto matures, sophisticated cyber threats targeting insiders are becoming the norm—not the exception.
-
1
Crypto Theft Surges to $2.1B in 2025: State Actors Lead Historic Wave of Attacks
27.06.2025 16:30 2 min. read -
2
Solana PumpFun Bot Turns Out to Be Malware in Disguise
04.07.2025 9:00 2 min. read -
3
Hackers Steal $140 Million from Brazilian Central Bank, Launder Funds Through Crypto
05.07.2025 11:00 2 min. read -
4
U.S. Court Ends Tornado Cash Legal Dispute, Marking Win for Coin Center
08.07.2025 10:00 2 min. read -
5
Investor Loses $6.9M After in TikTok Crypto Scam
16.06.2025 19:00 1 min. read
U.S. Court Ends Tornado Cash Legal Dispute, Marking Win for Coin Center
A legal clash between Coin Center and the U.S. Treasury Department over sanctions imposed on Tornado Cash has officially come to an end, following a joint decision to dismiss the case.
Hackers Steal $140 Million from Brazilian Central Bank, Launder Funds Through Crypto
A sophisticated cyberattack targeting Brazil’s central bank reserve accounts has resulted in the theft of over $140 million (R$800 million), much of which was swiftly funneled through cryptocurrency channels.
Solana PumpFun Bot Turns Out to Be Malware in Disguise
A malicious open-source project on GitHub disguised as a Solana trading bot has compromised user wallets, according to a July 2, 2025, report by cybersecurity firm SlowMist.
Pennsylvania Man Sentenced to 8 Years for $40M Crypto Ponzi Scheme
The U.S. Department of Justice has sentenced Dwayne Golden, 57, of Pennsylvania to 97 months in prison for orchestrating a fraudulent crypto investment scheme that stole over $40 million from investors.
-
1
Crypto Theft Surges to $2.1B in 2025: State Actors Lead Historic Wave of Attacks
27.06.2025 16:30 2 min. read -
2
Solana PumpFun Bot Turns Out to Be Malware in Disguise
04.07.2025 9:00 2 min. read -
3
Hackers Steal $140 Million from Brazilian Central Bank, Launder Funds Through Crypto
05.07.2025 11:00 2 min. read -
4
U.S. Court Ends Tornado Cash Legal Dispute, Marking Win for Coin Center
08.07.2025 10:00 2 min. read -
5
Investor Loses $6.9M After in TikTok Crypto Scam
16.06.2025 19:00 1 min. read