Their consumer’s dangerous Tinder expertise combines parts of social engineering, sim swapping, and a extra old-school drugging and robbing assault.
Certainly one of our shoppers was focused on a relationship app and ended up being drugged with the purpose of draining his crypto accounts. That is the story of the assault and our postmortem evaluation of what went flawed and what went proper. https://t.co/co3XacQGQp
— Jameson Lopp (@lopp) July 8, 2021
In response to the story, an alleged Bitcoin holder and dealer discovered his date by way of the cellular app Tinder, the place he contacted a lady who claimed to be a “cryptocurrency dealer.”
As the 2 met up in particular person, he observed that her footage had been barely completely different from her in-person look, however he didn’t suppose a lot about it.
The sufferer remembers that “she mentioned her dad and mom purchased her 1 bitcoin for $30,000, however in any other case she didn’t discuss crypto for the remainder of their time collectively.”
In the middle of their date, two determined to return to the person’s residence, and someplace within the interim, the girl laced his drink with scopolamine, additionally referred to as ‘Satan’s Breath,’ or a benzodiazepine, medicine famend to trigger reminiscence loss in addition to inhibition impairment.
In response to the put up, “he believes the girl picked up his telephone and requested him to indicate her the best way to unlock it and discover his passwords.”
The person wakened the subsequent day and his telephone was lacking, regardless that all of his different belongings, together with a pockets with money, debit playing cards, and ID had been nonetheless there.
Saved by the multisig
The sufferer instantly checked “varied accounts from his laptop computer and noticed that purchases from his checking account had been tried at a number of exchanges and Bitcoin withdrawals had been tried from different custodial companies,” because the attacker tried to strip him bare, figuratively.
“Lots of our shoppers can even have password managers and 2FA on their telephone. Within the case of this consumer, although he was not utilizing SMS 2FA, he was utilizing TOTP 2FA by way of a google authenticator app on the telephone. For the reason that attacker had coerced his telephone unlock pin from him, that they had entry to 2FA for all of his accounts,” talked about the put up because the creator drew a parallel to so-called sim swap assaults.
He ultimately misplaced solely a small quantity of Bitcoin as one in every of his change accounts was compromised, whereas the most important proportion of his complete holdings had been saved because of the multisig setup he had.
The attacker solely had one of many sufferer’s 5 keys, which enabled him to dam different requested purchases and withdrawals by contacting custodians and submitting a compromise.
Get an edge on the cryptoasset market
Entry extra crypto insights and context in each article as a paid member of CryptoSlate Edge.
Like what you see? Subscribe for updates.