Hackers are becoming more creative in their ways of deceiving unsuspecting investors and one of their latest efforts has been Twitter hacking. The Twitter accounts verified throughout the website have been the subject of posts on the Bitcoin prize competitions, leading many newcomers to lose funds. However, as companies have strengthened their defenses, these hackers have reached the new platform: Facebook.
The Facebook hacks are mostly in the form of fake cryptocurrency ads, which are presented as post sponsored with fake cryptocurrency as a subject. However, the goal of scammers does not seem to be to take the funds directly from these advertisements. Instead, they become aware of sensitive user data, including credit card information and private keys for cryptographic portfolios.
According to Hard Fork, one of the big ads looks just like a CNBC post, offering an investment opportunity with CashlessPay, a fake encrypted resource. This sponsored ad came from the profile of the musician Jonatanas Kazlauskas, but Hard Fork did not receive a response to their requests for comment.
The scam seems a little more obvious on the website, but a less experienced investor may still have difficulty in discerning it. Although the site is not provided on any of these websites, Hard Fork notes that it is not connected to CNBC, but states that Singapore has made changes to its legislation on cryptocurrency.
The report says: "Singapore, in an unprecedented move, has just announced that it is officially adopting a certain cryptocurrency as the official currency of Singapore, and the Singapore government has just informed us that it has chosen a preferred company for purchase and marketing of their new currency: the CashlessPay Group. "The rest of the article illustrates how the user can" invest "in the crypto resource.
This fake page leads to another fake page, which is the "fake" website for CashlessPay cryptocurrency. There are no links that actually work on the page, with the exception of a registration form that captures the user's personal data, including the phone number and the e-mail address. The insertion of the form brings the user to another bad page with multiple cryptographic desks that lead to false investment options.
Based on what Hard Fork has discovered so far, the two pages that are doing this are Roiteks and CoinPro Exchange. Both are registered in Bulgaria and there is no regulation, which is normal. Both pages still require the user to enter personal data and credit card information. There is even a chat to get "help" from one of their "representatives".
Hard Fork emphasizes something interesting about how the attackers managed to use Facebook. Facebook has a policy against malicious cryptocurrency ads, but somehow these scams have made it possible to implement defense algorithms. The company has come to completely ban cryptography and blockchain ads at the start of this year, but the restrictions have been eased later. However, it seems that this more passive approach has just left them at greater risk.
Now, the question is: Facebook will cancel these problems more effectively and efficiently than Twitter. So far, Facebook has not responded to comments.