The director general of the non-bubble chip platform Emblem Vault warns that X users are wary of the zoom video meeting application after a harmful threat actor known as “elusive Comet” recently stole more than $ 100,000 of his personal assets.
On April 11, the CEO of Emblem Vault, Podcaster and NFT collector, Jake Gallen, said on X that he had struggled against a “complete computer compromise” which ended up with a loss of Bitcoin (BTC) and ether (ETH) of various wallets. “Unfortunately, this has led to $ 100,000 + in digital assets purchased,” he said.
A few days later, Gallen said that he had worked with the Cybersecurity Company The Security Alliance (SEAL) to follow an ongoing campaign against crypto users by a threat actor identified as “elusive Comet”.
Gallen said that the scam was facilitated by the Zoom video platform, which led to the drained in its cryptographic portfolio.
“We were able to recover a malware file that was installed on my computer during a zoom call with a YouTube personality of more than 90,000 submarines,” said Gallen on April 14.
The malicious actor “employs sophisticated social engineering tactics in order to induce the victims to install malicious software and finally to steal their crypto,” said Seal at the end of March.
Source: Jake Gallen
Gallen said he had organized an interview after being contacted by “tactical investment”, an X account pretended to be the founder and CEO of fraction mining. However, during the interview, Tactical Investing left their screen off while Gallen was underway, allowing the installation of malware called “Goopdate”, which stole identification information and access its cryptographic wallets.
Cointelegraph holded the hand in account X for comments.
Zoom threatens from remote access
“For this scam to take place, he said that the guest of the video call Zoom allows remote access to the host of the call, which is a requested feature which is by default for each zoom account,” said Gallen.
The collector NFT Leonidas has confirmed the default parameters and advised those of the cryptographic industry to avoid remote access.
“If you don’t do this, anyone is on a zoom call with your employees can resume his default computer,” he said.
Source: Leonidas
The security researcher Seal Samczsun told Cintelelegraph that Zoom, by default, allows participants to meet to request access to the remote control. “At this point, we believe that the victim must still be social designed to grant access,” they said.
Cointelegraph stretched out the comments but did not receive an immediate response.
In relation: The founders of Crypto report a deluge of false attempts to hack North Korean zoom
Gallen also said that the pirates had accessed his large book portfolio even if he had only connected a few times in the three years and had never written the password now digitally.
They also hacked his X account to try to attract other victims through private messages.
Seal said that the elusive Comet is known to exploit Aureon Capital, which claims to be a legitimate venture capital company. The threat player is responsible for “millions of dollars in stolen funds” and presents a significant risk for users because of their “carefully designed background frame,” noted the company.
Samczsun advised users who interacted with Aureon Capital to contact the Emergency Hotline of Seal on Telegram.
Review: Bitcoin Eyes $ 100,000 by June, Shaq to settle the NFT trial, and more: Hodler’s Digest
