Tag:

Fake

Crypto
GameFi Guides

Fake Crypto Academy Swindles Florida Investor Of Nearly $1 Million In Life Savings

by admin


Trusted Editorial content, reviewed by leading industry experts and seasoned editors. Ad Disclosure

According to court papers filed last week, a Florida man lost $860,000 after signing up for a crypto trading school that turned out to be a scam. He thought he had found a path to quick profits. Instead, his funds vanished into thin air.

Fake Trading School Scheme

Based on reports, the operation was run by Alpha Stock Investment Training Center, or ASITC, in partnership with a so-called exchange called CoinBridge.

The school charged students for lessons on “signal trading,” and CoinBridge claimed it had raised $10 million from 600 investors. Both names gave off an air of trust. But no real exchange existed. All trades went through the scammers’ own platform.

Phony Denver crypto school robbed Florida man of $860K, he says https://t.co/ni0vwaOjj8

— The Denver Post (@denverpost) June 21, 2025

Signals And Small Wins

According to the lawsuit, instructor John Smith gave the victim, Brian Firestone, a $500 “gift” in December. That small amount jumped to $55,000 in a short time. He saw the number on his screen and felt hopeful.

Next, he put in another $50,000 in January. Suddenly, his balance read $2 million. He messaged Smith, “I’m blown away by these results.” Those early wins convinced him the system worked.

A docket of the filing of the case. Source: Justia.

Ballooning Investments And Loans

Then came the risky part. He wired $470,000 from his bank account and borrowed $330,000 from ASITC to keep the trades going. His balance climbed all the way to $24.5 million.

He said he felt on top of the world. He believed the training had unlocked a secret. But at that point, he had lost control over his own money.

Bitcoin is now trading at $101,492. Chart: TradingView

Sudden Crash And Lawsuit

The turning point happened on March 9. A USDT trade failed, and the platform froze. “I can’t close it,” he texted Smith, blaming a glitch. Within minutes, his entire balance was gone. He discovered his funds had been drained.

Now, he’s suing CoinBridge and ASITC in a US court. He wishes to get his money back and expects the suit to bring to light the individuals behind the scam.

According to his lawyers, the school deceived him at every stage, keeping secret the information that they were in control of the exchange and the signals.

Featured image from Unsplash, chart from TradingView

Editorial Process for bitcoinist is centered on delivering thoroughly researched, accurate, and unbiased content. We uphold strict sourcing standards, and each page undergoes diligent review by our team of top technology experts and seasoned editors. This process ensures the integrity, relevance, and value of our content for our readers.





Source link

0 comments
0 FacebookTwitterPinterestEmail
Instagram security steps
Gaming Gear

Invisible notification hack for Android can launch hidden app actions while showing fake links that look totally safe

by admin



  • Hackers are using invisible Unicode to trick Android into opening dangerous links from notifications
  • The link looks normal, but Android secretly opens something else without warning or consent
  • Even trusted apps like WhatsApp and Instagram are vulnerable to this hidden notification exploit

A security flaw in Android’s notification system could allows malicious actors to deceive users into opening unintended links or triggering hidden app actions, experts have warned.

Research from io-no claims the flaw lies in how Android parses certain Unicode characters within notifications.

This creates a mismatch between what users see and what the system processes when the “Open Link” suggestion appears.


You may like

What you see isn’t always what you get

The problem stems from the use of invisible or special Unicode characters embedded within URLs.

When included in a message, these characters can cause Android to interpret the visible text and the actual actionable link differently.

For instance, a notification might visibly display “amazon.com,” but the underlying code actually opens “zon.com,” with an inserted zero-width space character.

The notification displays as “ama[]zon.com,” including the hidden character. However, the suggestion engine interprets that hidden character as a separator, which results in it launching an entirely different site.

In some cases, attackers can redirect users not just to websites but also to deep links that interact directly with apps.

The report showed how a seemingly harmless shortened URL led to a WhatsApp call.

To make attacks less detectable, malicious actors can use URL shorteners and embed links into trusted-looking text.

The flaw becomes particularly dangerous when combined with app links or “deep links” that can silently trigger behaviors such as initiating messages, calls, or opening internal app views without user intent.

Tests on devices including the Google Pixel 9 Pro XL, Samsung Galaxy S25, and older Android versions revealed that this misbehavior affects major apps like WhatsApp, Telegram, Instagram, Discord, and Slack.

Custom apps were also used to bypass character filtering and validate the attack across multiple scenarios.

Given the nature of this flaw, many standard defenses may fall short. Even the best antivirus solutions may miss these exploits, as they often don’t involve traditional malware downloads.

Instead, attackers manipulate UI behavior and exploit app link configurations. Therefore, there is a need for endpoint protection tools, which offer broader detection based on behavioral anomalies.

For users at risk of credential theft or app abuse, relying on identity theft protection services becomes critical to monitor unauthorized activity and secure exposed personal data.

Until a formal fix is implemented, Android users should remain cautious with notifications and links, especially those from unfamiliar sources or URL shorteners.

You might also like



Source link

0 comments
0 FacebookTwitterPinterestEmail
Decrypt logo
NFT Gaming

Cointelegraph Website Hacked in Fake Airdrop Phishing Attack

by admin



In brief

  • Cointelegraph has confirmed a front-end hack used to serve phishing pop-ups to people accessing the site.
  • CoinMarketCap suffered a similar exploit days earlier.
  • Victims are being tricked into connecting their wallets to receive fake token airdrops.

Crypto news outlet Cointelegraph has confirmed that its website was compromised in a front-end exploit used to promote a fraudulent token airdrop and steal from users.

It said in a statement on X on Sunday night that it was aware of the “fraudulent pop-up” and was “actively working on a fix”.

“Do not click on these pop-ups, connect your wallets [or] enter any personal information,” it warned. 

Decrypt has approached Cointelegraph for comment. 

The pop-up falsely claims users have been selected for a giveaway of a new token, purportedly part of a “fair launch initiative” by Cointelegraph to reward loyal readers.

It displayed a fabricated token price and promised users just under $5,500 worth of tokens if they connected their crypto wallets. It also claimed security firm CertiK had audited the smart contract.

The method used mirrors a similar front-end attack on the price aggregator CoinMarketCap, which occurred just two days prior. 



In that case, visitors to the site saw pop-ups requesting wallet connections for verification purposes. CoinMarketCap later confirmed malicious code had been injected into the site, and it was removed.

Both incidents represent a growing wave of phishing attacks targeting crypto platforms via compromised user interfaces. 

In these scams, victims are lured into connecting wallets under false pretenses—such as receiving tokens or confirming identity—and then see their accounts drained by the attacker.

According to blockchain intelligence firm TRM Labs, phishing schemes and malware-based infrastructure attacks made up 70% of the $2.2 billion stolen in crypto-related hacks in 2024.

The Cointelegraph attack comes just days after security researchers disclosed a massive data dump containing over 16 billion stolen login credentials, including access to accounts on platforms like Google, Telegram, Facebook, and GitHub.

The trove was likely assembled from infostealer malware, credential stuffing, and prior leaks.

Edited by Sebastian Sinclair

Daily Debrief Newsletter

Start every day with the top news stories right now, plus original features, a podcast, videos and more.



Source link

0 comments
0 FacebookTwitterPinterestEmail
Golden toilet at gugenheim museum
Esports

Fake dentist arrested after Googling how to do a root canal

by admin



A man without a dental license has been arrested and charged with numerous crimes, including operating an illegal practice that generated thousands of dollars.

Per BBC News, the unnamed 22-year-old, who opened an unlicensed practice in 2023 and treated “dozens” of patients, was arrested in June alongside two “assistants,” all family members.

Tooth extraction, root canals, and the application of anesthesia were all carried out by the man, who had researched each procedure on the internet, in the family home in the Czech Republic.

Article continues after ad

The two assistants, a 50-year-old woman and a 44-year-old man, worked as a nurse and a producer of prosthetics, respectively.

Daniel FrankThe illegal practice made $185,500 before it was shut down.

According to police involved in the case, “The woman, who worked in the health sector, provided anaesthetics but also other dental material to which she had access, such as fillings, cleaning powder, glue, impression material, and much more.”

In total, the illegal practice made around $185,000 before being shut down, with all three participants being arrested.

Article continues after ad

Article continues after ad

While it’s not known what specific relation the three family members shared or the full extent of their involvement, all were charged with the operation of an illegal business as well as “money laundering, attempted assault, drug dealing, and theft.” All three pleaded guilty.

In comments made to Czech website Radiozurnal, Roman Smucler, president of the country’s dental chamber, said that reports of fake dental practices are rare but not exactly unheard of. He stated that over 10 such cases are reported every year in Czechia.

Article continues after ad



Source link

0 comments
0 FacebookTwitterPinterestEmail
Expired Discord link
Gaming Gear

Malicious Discord invites are targeting gamers with fake servers, stolen wallets, and malware disguised as game hacks

by admin



  • Cybercriminals are recycling expired Discord links to launch silent, devastating multi-stage malware attacks
  • A fake Discord bot tricks users into running PowerShell commands disguised as CAPTCHA fixes
  • Old community invite links now lead to malware servers stealing your data and digital assets

Cybercriminals are increasingly exploiting a lesser-known flaw in Discord’s invitation system to target unsuspecting users, particularly gamers, new research has claimed.

A report from researchers from Check Point found attackers manage to register previously valid invite links with custom vanity URLs.

The tactic involves hijacking once legitimate and trusted expired or deleted Discord invite links and redirecting them to malicious servers hosting multi-stage malware campaigns.


You may like

These hijacked links, often embedded in old forum posts, community pages, or social media, are being used to silently funnel users to Discord servers operated by threat actors.

Once on these fake servers, users are greeted with what appears to be a standard verification process.

A bot named “Safeguard” prompts visitors to click a “Verify” button, which initiates an OAuth2 process and redirects them to a phishing site.

The site employs a social engineering method called “ClickFix,” where users are tricked into copying and running a PowerShell command under the guise of fixing a broken CAPTCHA.

This action silently launches the malware installation chain, with the attackers using cloud services such as Pastebin, GitHub, and Bitbucket to deliver the payloads in multiple stages, allowing them to blend into normal network traffic.

Initial scripts download executables that retrieve further encrypted payloads, which include AsyncRAT, a tool that gives attackers remote control over infected systems, and a tailored variant of the Skuld Stealer designed to extract credentials and cryptocurrency wallet data.

Gamers have become a prime target, with campaigns even disguising malware as tools like The Sims 4 DLC unlockers – one archive named Sims4-Unlocker.zip was downloaded over 350 times, highlighting the campaign’s reach.

Through clever evasion techniques such as delayed execution and command-line argument checks, the malware often bypasses detection from even the best antivirus software.

The threats extend beyond typical malware infections. The Skuld Stealer used in these attacks can extract crypto wallet seed phrases and passwords, effectively granting full control over victims’ digital assets.

Considering the focus on cryptocurrency theft and credential harvesting, individuals should reinforce their defenses with robust identity theft protection services.

These tools can monitor for unauthorized use of personal information, alert users to breaches, and assist in recovering compromised digital identities.

While some might assume that endpoint protection tools would shield them from these tactics, the multi-layered, modular structure of the attack often flies under the radar.

To stay safe, users must be wary of Discord invite links, especially those embedded in old content. Also, avoid running unexpected scripts or following suspicious verification steps.

You might also like



Source link

0 comments
0 FacebookTwitterPinterestEmail
Abstract image of cyber security in action.
Gaming Gear

Friendly fire: Hackers target their own with fake malware and gaming cheats

by admin



  • Sophos says it was tipped off to the existence of Sakura RAT
  • An in-depth investigation uncovered more than a hundred backdoored GitHub projects
  • They are all targeting wannabe hackers and game cheaters

It’s a ‘dog eat dog’ world out there, as Sophos’ security researchers uncovered a major hacking operation targeting – other hackers, with people cheating in computer games also targeted.

In an in-depth analysis posted recently, Sophos said a customer asked if its platform protected against a piece of malware found on GitHub, called Sakura RAT. They were apparently interested in the open source project after media claims of “sophisticated anti-detection capabilities.”

Sophos quickly realized that not only is Sakura RAT harmless to other people – it is only a risk to those compiling it and looking to distribute it to other people.


You may like

Down the rabbit hole

“In other words, Sakura RAT was backdoored,” Sophos explained.

The RAT itself wasn’t that peculiar, either. Most of the code was copied from the popular AsyncRAT, and many of the forms inside were left empty, which means it wouldn’t even operate properly on the target device.

But the RAT led the team “down a rabbit hole of obfuscation, convoluted infection chains, identifiers, and multiple backdoor variants.”

Apparently, the person(s) behind the RAT – alias ischhfd83 – actually created more than a hundred backdoored malware variants, all designed to target newbie threat actors and people looking for game cheats.

In total, Sophos found 141 repositories from the same threat actors, 133 being malwared in different ways. 111 contained Sakura.

The majority (58%) were advertised as game cheats, 24% as malware projects, 7% as bots, 5% as crypto tools, and 6% as other miscellaneous tools.

The campaign started in 2024, the researchers added, suggesting that it was targeting newbies because advanced threat actors would run such projects in a sandbox environment. Furthermore, they would analyze the project’s owner and the comments, and quickly realize most of the interaction is done by bots with almost identical names.

The campaign wasn’t attributed to any particular threat actor, but it was stated that it was rather successful.

You might also like



Source link

0 comments
0 FacebookTwitterPinterestEmail
Pi Network Cautions Pioneers On Fake Wallet Phishing Scams
GameFi Guides

Pi Network Cautions Pioneers on Fake Wallet Phishing Scams

by admin



As the Pi Network moves deeper into its Open Mainnet phase, the Core Team has issued a fresh advisory to its global user base, urging caution against phishing scams that mimic the official Pi Wallet interface. These scams are designed to steal secret passphrases from unsuspecting users.

The official Pi Wallet is only accessible at wallet.pinet.com through the Pi Browser. It carries a distinct visual identity with a purple navigation bar and a Pi logo that includes the Core Team apps icon. 

Remember to only use the Pi Wallet in the Pi Browser at exactly “https://t.co/OEifsSaA3K” in order to safeguard your Pi. Learn more: https://t.co/WFHv43Kny7

The authentic Pi Wallet is visually identified by a purple color in the navigation bar of the Pi Browser with a Pi logo…

— Pi Network (@PiCoreTeam) June 5, 2025

According to the advisory, several fake websites have emerged with interfaces almost identical to the original but hosted on misleading URLs. Users who enter their passphrases into these counterfeit sites risk losing their Pi holdings permanently.

The Pi Browser operates similarly to Chrome or Safari. This means users themselves must verify whether the sites they are visiting are legitimate. The Core Team stressed that it cannot control how the browser is used and urged users to remain vigilant.

No member of the Pi Core Team will ever ask for wallet passphrases, passwords, or verification codes. The team also clarified that it does not reach out to users through phone calls or unsolicited messages. Any such interaction should be treated as a scam attempt.

Scammers are stepping up efforts to target Pi Network users by sending fake emails, running misleading ads, cloning websites, and pretending to be official accounts on social media. Their goal is to trick users into giving away their wallet passphrases. Many of these fake pages closely resemble the real Pi Wallet, but use slightly altered web addresses or hide malicious links behind ads.

To avoid falling victim, users are being told to trust only emails from official Pi domains like noreply@pi.email, especially when it comes to two-factor authentication or anything involving wallet migration. Any message that doesn’t come from Pi’s verified sources should raise concern.

According to the Core Team, while scammers can copy the look of the wallet, they can’t fake the actual app URL or the layout seen inside the Pi Browser. These are key signs users should look for before entering any sensitive information.

Because blockchain transactions can’t be undone, entering your passphrase on a fake site could lead to losing everything in your wallet. And with more users now moving to the Open Network, the chances of getting targeted by these scams are only going up.

For updated security guidelines and a list of verified Pi apps and products, users are advised to check the Pi Safety Center. This remains the most reliable resource for identifying fake platforms and reporting suspicious activity.

Also Read: Pi Network Binance Listing Talks Spark Outrage, Pioneers Say ‘No’





Source link

0 comments
0 FacebookTwitterPinterestEmail
A fake Facebook event disguised as a math problem has been one of its top posts for 6 months
Product Reviews

A fake Facebook event disguised as a math problem has been one of its top posts for 6 months

by admin


A nearly year-old Facebook event for a “simple maths competition” has been one of the most viral posts on the platform for six months. The “event” racked up about 51 million views on Facebook during the first quarter of 2025, according to the company’s latest report on “widely viewed content” on the platform.

That would be an impressive stat for any single post, but it’s the second quarter in a row in which the “maths competition” has nabbed the number two spot on Meta’s list of widely viewed content. It also appeared on last quarter’s report, during which time it received about 64.3 million views, according to an archived version of the report.

So why is a random Facebook event that’s not really an event getting more than 100 million views? It would seem to be a repackaging of an old engagement bait tactic. The header image for the event is an image of a piece of paper with the words “only for genius” followed by a seemingly simple equation. When shared as a Facebook post, the image is prominently displayed in a way that may look like a normal image post. The image also has some striking similarities to other seemingly simple math equations that have been going viral on Facebook for nearly 15 years.

A look at the event page itself shows that hundreds of thousands of people have engaged with the event. More than 800,000 people responded to the supposed July 8, 2024 event. Even now, nearly a year later, the event is seeing regular comments from Facebook users — most of whom are intent on earnestly explaining how the equation should be solved (or arguing with others’ interpretation). As Slate noted back in 2013, there’s something irresistible about arguing basic arithmetic with strangers on the internet.

What is a bit of a mystery is why this post has gone so viral months after it was originally posted. I reached out to the account behind the post, a Nigerian-based creator named Ebuka Peter Ibeh and didn’t immediately hear back. The post seems to be far more successful than any other recent posts from Ibeh, who has about 25,000 Facebook followers.

In any case, the post offers an interesting window into the kinds of bizarre content and questionable tactics that still regularly goes mega-viral on Facebook. Meta recently said it would crack down on creators sharing spammy posts on Facebook, though it’s unclear if this type of engagement bait would fall under the category of content it’s explicitly trying to discourage.



Source link

0 comments
0 FacebookTwitterPinterestEmail
Close