Bitcoin swindlers are now targeting iPhone and Android users through popular dating apps, such as Bumble and Tinder, charging hundreds of thousands of dollars in fake “profit tax” to unlock their crypto accounts, cyber-security researchers warned on Monday.
The international cryptocurrency trading scam called CryptoRom, unearthed by cyber-security firm Sophos, has become well-organised and targets victims all over the world.
In one case, a victim was charged $625,000 to regain access to the $1 million he had invested in a fake crypto-trading scheme, recommended by someone he had met on an online dating platform. When victims tried to withdraw their investments from one of the fake trading schemes, their accounts were frozen and were charged up to hundreds of thousands of dollars in fake “profit tax” to regain access.
“The CryptoRom scam is romance-centred financial fraud that relies heavily on social engineering at almost every stage,” said Jagadeesh Chandraiah, senior threat researcher at Sophos.
The scammers attract targets through fake profiles on legitimate dating sites and then try to persuade the target to install and invest in a fake cryptocurrency trading app. The apps are usually installed as web clips and are designed to closely resemble legitimate, trusted apps.
Victims who struggle to pay the tax are offered a loan. There are even fake websites that promise to help people recover their funds if they’ve been scammed.
The research also found a few cases where the CryptoRom operators had approached targets directly via WhatsApp and SMS messages, probably using stolen information.
According to Sophos, the fraudsters are misusing Apple’s TestFlight feature that allows for a limited group of people to install and trial a new iOS app and go through a less stringent Apple review process.
(To receive our E-paper on whatsapp daily, please click here. We permit sharing of the paper’s PDF on WhatsApp and other social media platforms.)
Published on: Tuesday, March 29, 2022, 08:35 AM IST