Cryptocurrency phishing grows by 40% in one year 

Kaspersky’s anti-phishing systems prevented 5 million cryptocurrency-related phishing attacks in 2022, increasing by 40% compared to the previous year. Conversely, there was a decrease in the detection of traditional financial threats, such as banking and mobile financial malware. The company’s latest report on financial threats includes these and other findings.

According to a new report by Kaspersky, the financial threat landscape saw significant changes in 2022. While attacks using traditional financial threats such as banking PC and mobile malware have become less common, cybercriminals shifted their attention to new areas, including the crypto industry.

In the last year, cryptocurrency phishing rose significantly and was included as a separate category, demonstrating 40% year-on-year growth with 5,040,520 detections of crypto phishing in 2022 compared to 3,596,437 in 2021. This increase in crypto phishing could be partially explained by the havoc on the crypto market last year. It is still unclear if the trend will continue. This depends on the trust users place in cryptocurrency. This data correlates with users’ experiences with cryptocurrency threats explored by Kaspersky earlier this year – every seventh person surveyed was affected by cryptocurrency phishing.

Although most crypto scams feature traditional tricks such as giveaway scams or fake wallet phishing pages, a recent active fraudulent scheme discovered by Kaspersky shows scammers are constantly developing new techniques to ensure their success. In this campaign, the user receives a PDF file in English by mail, stating that they allegedly registered on a cryptocurrency cloud mining platform a long time ago and need to urgently withdraw a lot of crypts since their account is inactive. The file contains a link to a fake mining platform. To withdraw the crypt, the user must fill out a form with personal information, including the card or account number, and pay a commission, in this case, through a crypto wallet or directly to the specified wallet address. 

An example of active crypto fraudulent scheme occurred in February 2023

“Despite some problems that have occurred in the cryptocurrency market over the past six months, in many people’s minds, crypto remains a symbol of getting rich quickly with minimal effort. Therefore, the flow of scammers parasitizing in this field does not dry out. To lure victims into their networks, these scammers continue to develop new and more interesting stories,”commented Olga Svistunova, a security expert at Kaspersky.

To learn more about the state of financial threats in 2022, visit Securelist.com.

Find more details about the new cryptocurrency scam scheme on Kaspersky Daily.

To maximize the benefits of using cryptocurrency safely, Kaspersky experts also recommend the following:

• Be cautious of phishing scams: Scammers often use phishing emails or fake websites to trick people into revealing their login credentials or private keys. Always double-check the website URL, and don’t click on any suspicious links.
• Don’t share your private keys: your private keys unlock your cryptocurrency wallet. Keep them private and never share them with anyone.
• Educate yourself: stay informed about the latest cyber threats and best practices to keep your cryptocurrency safe. The more you know about protecting yourself, the better equipped you’ll be to prevent cyber-attacks.
• Research before investing: thoroughly research the project and the team behind it before investing in any cryptocurrency. Check the project’s website, white paper, and social media channels to ensure that the project is legitimate.
• Use security solutions: a reliable security solution will prevent all known and unknown cryptocurrency fraud and unauthorized use of your computer’s processing power to mine cryptocurrency.