Fraudsters have learned how to steal digital assets through the Zoom platform

Cryptocurrency fraudsters are spreading malicious links that allegedly direct to the Zoom video conferencing platform. The fraudsters have already stolen $ 300,000 worth of crypto assets.

A cybersecurity engineer who uses the pseudonym NFT_Dreww on social network X has warned users about a new sophisticated crypto scam using social engineering. The expert explained that the attackers mainly target owners and creators of non-fungible tokens (NFTs).

The fraudsters contact them and ask if they are interested in licensing their intellectual property, inviting them to Twitter Spaces or offering them to join a team for some new project.

The scammers insist that the potential victim connect to the Zoom platform for a video conference and send a malicious link. After clicking on the link, the user sees a frozen page with a download screen.

The user is then prompted to download and install ZoomInstallerFull. exe, which is actually malware. After installation, the user is redirected back to the official Zoom platform, but by that time, the malware has already infiltrated the target computer, and fraudsters manage to steal data and crypto assets.

The security expert noted that when the malware is launched, it is added to the Windows Exceptions List so that the antivirus system cannot block it.