A cybersecurity solutions company, Sophos, has revealed that there is an international scam of cryptocurrency trading that has been targeting people through dating apps like Bumble, Tinder, Grindr, etc., on their iPhones. The researchers at the company found that they have already collected more than $1.4 million in tokens and compromised the data of the user for other cybersecurity risks.
The findings show that the hackers are targeting people from Asia, Europe, and the US. They uncovered a Bitcoin wallet that is controlled by the attackers. They have named the threat CryptoRom. Through this scam, they are duping the user and luring them into installing some dubious apps that compromise their data. After they have made contact, the hackers suggest moving the conversation onto another messaging platform. Then, they persuade the user to install a fake cryptocurrency trading app and invest. Through the fake crypto trading app, these attackers are able to take control of their iPhones and get their personal data. To distribute the app, they use websites mimicking bank websites.
Apart from stealing their money, the hackers also access their devices. They leverage the ‘Enterprise Signature’ system that helps companies pre-test new applications with selected users before submitting them to the Apple App Store for approval. Through this functionality, attackers are able to target large groups of people and gain remote control over their iPhones. They can collect data, install and manage apps, and add and remove accounts.
So, if you are planning on investing in cryptocurrency, it is best that you use a verified platform.
