Monday, July 26, 2021
HomeBitcoin, catfishing, drugs: How a Tinder match almost led to crypto robbery

Bitcoin, catfishing, drugs: How a Tinder match almost led to crypto robbery

Bitcoin (BTC) self custody supplier Casa warns about bodily assaults towards Bitcoin holders, as they publish a weblog put up describing details of a current incident.

Their consumer’s dangerous Tinder expertise combines parts of social engineering, sim swapping, and a extra old-school drugging and robbing assault.

Satan’s Breath

In response to the story, an alleged Bitcoin holder and dealer discovered his date by way of the cellular app Tinder, the place he contacted a lady who claimed to be a “cryptocurrency dealer.”

As the 2 met up in particular person, he observed that her footage had been barely completely different from her in-person look, however he didn’t suppose a lot about it. 

The sufferer remembers that “she mentioned her dad and mom purchased her 1 bitcoin for $30,000, however in any other case she didn’t discuss crypto for the remainder of their time collectively.”

In the middle of their date, two determined to return to the person’s residence, and someplace within the interim, the girl laced his drink with scopolamine, additionally referred to as ‘Satan’s Breath,’ or a benzodiazepine, medicine famend to trigger reminiscence loss in addition to inhibition impairment. 

In response to the put up, “he believes the girl picked up his telephone and requested him to indicate her the best way to unlock it and discover his passwords.”

The person wakened the subsequent day and his telephone was lacking, regardless that all of his different belongings, together with a pockets with money, debit playing cards, and ID had been nonetheless there.

Saved by the multisig

The sufferer instantly checked “varied accounts from his laptop computer and noticed that purchases from his checking account had been tried at a number of exchanges and Bitcoin withdrawals had been tried from different custodial companies,” because the attacker tried to strip him bare, figuratively.

“Lots of our shoppers can even have password managers and 2FA on their telephone. Within the case of this consumer, although he was not utilizing SMS 2FA, he was utilizing TOTP 2FA by way of a google authenticator app on the telephone. For the reason that attacker had coerced his telephone unlock pin from him, that they had entry to 2FA for all of his accounts,” talked about the put up because the creator drew a parallel to so-called sim swap assaults.

He ultimately misplaced solely a small quantity of Bitcoin as one in every of his change accounts was compromised, whereas the most important proportion of his complete holdings had been saved because of the multisig setup he had.

The attacker solely had one of many sufferer’s 5 keys, which enabled him to dam different requested purchases and withdrawals by contacting custodians and submitting a compromise. 

Get an edge on the cryptoasset market

Entry extra crypto insights and context in each article as a paid member of CryptoSlate Edge.

On-chain evaluation

Worth snapshots

Extra context

Join now for $19/month Explore all benefits

Posted In: , Crime

Like what you see? Subscribe for updates.

Source link


Leave a reply

Please enter your comment!
Please enter your name here

- Advertisment -

Most Popular

Recent Comments