Khởi tố vụ lừa đảo tiền điện tử, chiếm đoạt hơn 7,4 tỷ đồng tại TP.HCM. Các nghi phạm giả danh chuyên gia tài chính, dụ nạn nhân đầu tư vào sàn giao dịch ảo. Vụ việc cũng phanh phui đường dây tổ chức vượt biên trái phép sang Campuchia. #CryptoScam #LuanDaoTienSo #Campuchia #ToiPhamMang #Cybercrime #FinancialFraud #VuAnHinhSu
#cryptoscam
More than 1000 cryptofraud domains not reachable.
A bit lazy in the new year, we have not checked on all of them.
On 91.236.116.238. UK-WIN - in Sweden, a shithole.
The scammers are a bit lazy too maybe:
Certificate valid:
Not Before Thu, 02 Oct 2025 11:53:37 GMT
Not After Wed, 31 Dec 2025 11:53:36 GMT
Wonder if they will show up again. And where.
A few domain checks says registered in June 2025.
mainreg as registrar, often seen in this ind of fraud setups. #cryptoscam
Alright team, it's been a pretty packed start to the year in cyber! We've got some interesting developments on active exploitation, new malware campaigns, and a couple of big names facing regulatory heat. Let's dive in:
Recent Cyber Attacks ⚠️
- Unleash Protocol, a decentralised IP platform, lost approximately $3.9 million in crypto due to an unauthorised smart contract upgrade, initiated by an external address gaining administrative control via multisig governance.
- A Lithuanian national was extradited to South Korea for infecting 2.8 million systems globally with clipboard-stealing malware, disguised as the KMSAuto Windows/Office activator, siphoning around $1.2 million in virtual assets.
- Amazon successfully blocked over 1,800 suspected North Korean operatives from infiltrating its workforce since April 2024, who were posing as IT workers or recruiters to steal credentials and source code, as DPRK crypto theft surged to $2 billion in 2025.
📰 The Hacker News | https://thehackernews.com/2026/01/threatsday-bulletin-ghostad-drain-macos.html
Actively Exploited Vulnerabilities 🛡️
- The RondoDox botnet has been actively exploiting the critical React2Shell (CVE-2025-55182, CVSS 10.0) RCE flaw in React Server Components and Next.js since December 2025, targeting IoT devices and web servers to deploy crypto miners and Mirai botnet variants.
- A coordinated campaign, primarily from Japan-based infrastructure, systematically exploited over 10 Adobe ColdFusion CVEs from 2023-2024 during Christmas 2025, leading to direct code execution, credential harvesting, and JNDI lookups.
- Researchers identified a 4-second window where AWS IAM eventual consistency allows attackers to leverage deleted access keys to create new ones, achieving persistence even after defenders believe credentials are revoked.
📰 The Hacker News | https://thehackernews.com/2026/01/rondodox-botnet-exploits-critical.html
📰 The Hacker News | https://thehackernews.com/2026/01/threatsday-bulletin-ghostad-drain-macos.html
New Threat Research & Malware Campaigns 🚨
- The GlassWorm supply chain campaign has resurfaced, now targeting macOS users with malicious Open VSX extensions (50,000 downloads) to steal funds from over 50 browser extension wallets, iCloud Keychain data, and developer credentials.
- OceanLotus (APT) is targeting China's Xinchuang initiative, exploiting CVE-2023-52076 (RCE in Atril document viewer) and deploying custom ELF Trojans specifically designed to bypass traditional Linux system checks on indigenous innovation platforms.
- The IPCola proxy network, offering 1.6 million IPs, is powered by the GaGaNode decentralised bandwidth monetization service, whose SDK contains a critical RCE vulnerability, enabling broad compromise of IoT, desktop, and mobile devices.
- Large-scale mobile adware campaigns, GhostAd (Android) and SkyWalk (iOS), are draining device resources and defrauding advertisers by running persistent background ad engines and serving invisible ads, respectively.
- Magecart attacks are evolving into full identity compromise, hijacking checkout and account creation flows with fake payment forms, phishing iframes, and anti-forensics techniques to steal credentials and personal information.
- A new cybercrime tool, ErrTraffic, automates "ClickFix" attacks by generating fake browser glitches on compromised websites, tricking users into installing information stealers or Android banking trojans.
- Kaspersky discovered 'Keenadu', a pre-installed backdoor in libandroid_runtime.so on certain Android tablet models, providing remote access for data exfiltration and command execution.
📰 The Hacker News | https://thehackernews.com/2026/01/threatsday-bulletin-ghostad-drain-macos.html
Threat Landscape & AI Concerns 🧠
- Reddit banned the r/ChatGPTJailbreak subreddit (229,000 users) for violating rules, highlighting ongoing challenges with LLM safety filters, prompt injections, and the potential for generating non-consensual deepfakes; poetic prompts were found to increase attack success rates fivefold.
- Research details "hacktivist proxy operations" where ideologically aligned non-state cyber groups conduct disruptive activities (DDoS, defacement) that align with state geopolitical interests, providing plausible deniability for the benefiting state.
📰 The Hacker News | https://thehackernews.com/2026/01/threatsday-bulletin-ghostad-drain-macos.html
Regulatory & Corporate Accountability ⚖️
- Reuters reported that Meta developed a "playbook" to mislead regulators about the prevalence of scam ads on its platform, by systematically deleting fraudulent ads from its Ad Library during regulatory searches.
- Disney agreed to pay a $10 million civil penalty to settle FTC allegations of violating children's privacy laws (COPPA) by misdesignating YouTube content, leading to unlawful data collection and targeted advertising without parental consent.
📰 The Hacker News | https://thehackernews.com/2026/01/threatsday-bulletin-ghostad-drain-macos.html
#CyberSecurity #ThreatIntelligence #Vulnerabilities #RCE #Botnet #Malware #APT #SupplyChain #Adware #AdFraud #CryptoScam #NationState #DPRK #AI #LLM #DataPrivacy #COPPA #RegulatoryCompliance #InfoSec #IncidentResponse
@urlyman gotta keep laundering money for Putin. #sanctionsEvasion #cryptoScam #ponziTech
RE: https://mastodon.social/@redest_hat/115807498823448248
Once enough money flows in from investors, the developers, who control all the tokens, dump their entire holdings at once. This crashes the price to zero instantly. They then shut down everything and vanish with all the funds. #Cryptoscam #Rugpull #cryptoinvestment
If you didn't find the platform through a major, verified app store or official exchange site, assume it's a trap. Never trust investment advice from strangers online. #CryptoScam #Web3Safety
A compromised update to Trust Wallet's Chrome extension (version 2.68) has led to $6M in stolen crypto 💰
Malicious code exfiltrated wallet data to a suspicious domain 📡
Users urged to update to version 2.69 and avoid phishing sites promising fake "fixes" 🛑
#TechNews #CryptoSecurity #Phishing #Cybersecurity #Blockchain #DigitalAssets #CryptoScam #TrustWallet #Wallet #Ledger #Malware #Browser #Chrome #CryptoSafety #Security #Privacy #HackerNews #Crypto #ScamAlert #Scam
#alphabetchallenge #bookchallenge R is for Red Team Blues by Cory Doctorow #technoir #heist #hacker #evilcorporation #martinhench #SocialInequality #CryptoScam #Thriller #forensicaccounting #forensicaccountant #corydoctorow #antifinance #booksky #bookstagram #booktok #ttrpgpodcast #gamemastersbookclub https://www.k-squareproductions.com/gmbc
Cá nhân chia sẻ trải nghiệm tiêu cực với EvenBet Gaming: Chi 20.000€ vào nền tảng casino tiền ẩn năm 2022 nhưng bị lừa đảo. Hứa hẹn giao hàng 7 ngày, tích hợp token, ứng dụng iOS đều thất hứa. Sau 4-5 tháng, hệ thống không hoàn thiện. Đến 2024, việc bán nền tảng thất bại do yêu cầu KYC thay đổi. Dự án dừng hoạt động, nhà đầu tư mất trắng. Cẩn trọng: #EvenBetGaming #LừaĐảoTiềnĐiệnTử #CryptoScam #BẫyĐầuTư #InvestmentFraud #CryptoWarning
https://www.reddit.com/r/SaaS/comments/1po7hjf/20000_paid_to
Lập dự án "ma" về tiền ảo, một nhóm đối tượng đã lừa đảo, chiếm đoạt hàng nghìn tỷ đồng từ các nhà đầu tư. Thủ đoạn này tiếp tục cảnh báo về rủi ro khi tham gia vào các dự án tài chính không minh bạch.
#TiềnẢo #LừaĐảo #TàiChính #CryptoScam #Fraud #VietnamNews
https://vtcnews.vn/lap-du-an-ma-ve-tien-ao-chiem-doat-hang-nghin-ty-dong-ar993333.html
»In addition to pardoning drug kingpins like Juan Hernández, Trump, his wife, and his sons have been rolling out numerous cryptocurrencies of their own. And as you might expect, every single one of these virtual assets have declined massively in value since their initial hype cycle.«
#Cryptoscam
RE: https://bsky.app/profile/did:plc:d3v6hjby4ks6xw27gbzkeihl/post/3m7sfn3ymfk2d
Lesenswerte Sonntagskolumne von @chrisstoecker
"Die EU sollte sich hier keinesfalls erpressen lassen. Was in den sozialen Medien derzeit passiert, ist weder harmlos noch irrelevant. Unsere Gesellschaften werden angegriffen, für kleines Geld und Bauernfängerei."
But if #Bitcoin is so amazing, keeps going up in value, and everybody wants it, why is there advertising everywhere from people desperately trying to sell you Bitcoin? #Crypto #CryptoMarket #CryptoScam
"We have to constantly remember that anytime we give attention to something stupid, it makes both our experience online worse and becomes profitable for sleazy people to manipulate us"
#bitcoinscam
#cryptoscam
#socialplatform
#algorithm
#youtubeshort
#EtymologyNerd
https:// www.youtube.com/shorts/fJf0hdaQ_Hs
Trump pardons crypto billionaire during 2024 campaign—turning the pardon power into a political bribe. Justice? Forget it. Corruption on display. #PardonAbuse #CryptoScam #TrumpWatch www.cbsnews.com/news/trump-p...
Trump pardon of crypto billion...
Keine Ahnung ob ihr den Alice Weidel und Gregor Gysi #Cryptoscam schon kennt, aber warnt eure #Eltern wenn sie links- oder rechtsradikal sind vor diesem #Scam der auf #Facebook und #WhatsApp die Runde macht.
Sau vụ trùm Chen Zhi, Mỹ tập hợp Bộ Tư pháp, FBI, Mật vụ & Bộ Tài chính thành “ScamCenter Strike Force” để đập tan các mạng lưới lừa đảo tiền mã hoá, gây thiệt hại hàng trăm tỷ USD. #CryptoScam #ScamCenterStrikeForce #AnNinhMạng #TinTức #Crypto #USA #Vietnam #TinTucVietNam
There is still around 3.57 bitcoins in one of the wallets used in the "Twitter celebrity hack" in 2020 (https://en.wikipedia.org/wiki/2020_Twitter_account_hijacking).
And small amounts being moved into the wallet. https://www.blockchain.com/explorer/addresses/btc/bc1qxy2kgdygjrsqtzq2n0yrf2493p83kkfjhx0wlh . Wonder if this is related to any of the tens of thousands of #cryptoscam sites. Small pieces of info may perhaps indicate so.
I don't have a brain that can analyse bitcoin transactions though.
ФАКТЧЕК: Смерть Фарука Фатиха ОзераОригинал: ForkLog о смерти основателя Thodex в турецкой тюрьме.Подтверждение:Anadolu Agency: Смерть 30-летнего заключённого Faruk Fatih Özer, осуждённого в 2023.
Hurriyet/Milliyet: Сердечный приступ, расследование продолжается.
CoinDesk/CoinTelegraph: Факт подтверждён.
Суд: 11 196 лет за мошенничество, преступную группу и отмывание (2023).Итог: Подтверждено турецкими и крипто-СМИ. Причина — вероятно, сердце; фейки об "убийстве" не подтверждены.КОНТЕКСТThodex рухнула в 2021: Озер скрылся с $2+ млрд. Задержан в Албании, экстрадирован. Аналог: OneCoin, PlusToken.ХЭШТЕГИ (10 ключевых)#Thodex #FarukOzer #CryptoScam #Turkey #Fraud #CEXCollapse #CryptoNews #Regulation #Blockchain #MarketRisksИСТОЧНИКИAnadolu Ajansı: Официальное сообщение.
Hurriyet: Детали расследования.
CoinDesk: "Thodex Founder Dies in Prison".
ForkLog: Пересказ.
Турецкий приговор 2023.
Если нужно короткий пост для X:
"Основатель Thodex Фарук Озер умер в тюрьме от сердечного приступа. Подтверждено Anadolu и CoinDesk. Урок: P2P-риски на $2 млрд. #Thodex #CryptoScam" (147 симв.)Для цепочки "Уроки P2P РФ" или серии "Гниение P2P-рынка" — дай знать, соберу.
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst