CoinVoice recently learned that the nonprofit organization Security Alliance warns that they currently discover multiple scam attempts initiated by North Korean hackers every day, with these attacks luring victims through fake Zoom meetings.
This scam technique entices victims to download malware during a 'fake Zoom call', thereby stealing sensitive information including passwords and private keys. Security researcher Taylor Monahan warned that this tactic has already taken over $300 million in assets from users.
The scam usually begins with a recent update sent from a Telegram account, which often belongs to someone the victim 'knows'. Due to the familiar identity, the victim becomes less vigilant. Subsequently, the conversation naturally transitions to an invitation to 'catch up over Zoom'. Once the call begins, the hacker pretends to encounter audio issues and sends a so-called 'patch file'. When the victim opens the file, malware is implanted on their device. The hacker then ends the fake call under the pretext of 'let's reschedule for another day'. [Original link]