Hackers target MetaMask users under the pretext of KYC compliance: Armorbox

insidetrack IndiaJune 28, 2022

606 2 minutes read

As crypto exchanges and wallets make KYC mandatory for users, scammers are targeting crypto traders under the pretext of getting their wallets KYC compliant, reveals a new research Armorblox. MetaMask is one of the most widely used crypto wallet that allows users to store digital assets, interact with the blockchain and host dApps.
According to Armorblox researchers, hackers pass Microsoft Office 365, and draft email attacks targeting multiple organizations across the financial industry. The email sent out to users looks like a legit email from MetaMask wallet asking users to verify their account. However, when victims clicked the link they are taken to a spoofed MetaMask verification page.
The socially engineered email was titled ‘Re: [Request Updated] Ticket: 6093-57089-857’ and looked to be sent from MetaMask support email: support@metamask.as. “The email body spoofed a Know Your Customer (KYC) verification request and claimed that not complying with KYC regulations would result in restricted access to MetaMask wallet,” the researchers said in a blog post.

Upon clicking the “Verify your Wallet” button, within the email, the victim is redirected to a fake landing page – one that closely resembled a legitimate MetaMask verification page. The victim was prompted to enter his or her Passphrase in order to comply with KYC regulations and to continue the use of MetaMask service.
Staying Safe
“For better protection and coverage against email attacks (whether they’re spear phishing, business email compromise, or credential phishing attacks like this one), organizations should augment built-in email security with layers that take a materially different approach to threat detection,” Researchers at Armorblox said. Subject the email to an eye test that includes inspecting the sender name, sender email address, the language within the email, and any logical inconsencies within the email.
“If you haven’t already, implement these hygiene best practices to minimize the impact of credentials being exfiltrated: Deploy multi-factor authentication (MFA) on all possible business and personal accounts. Don’t use the same password on multiple sites/accounts,” Researchers added.

insidetrack IndiaJune 28, 2022

606 2 minutes read

insidetrack India

Safe house pet Marley wins cat of the year award September 18, 2024
The seven-year-old feline takes the title in recognition of his "incredible gift of empathy".
Officers handing in Tasers and firearms - Sir Mark September 18, 2024
Officers surrendering their Tasers and firearms "risks London becoming less safe", Met Police boss says.
Patel gives Surrey upper hand over Durham September 18, 2024
Ryan Patel hits a career-best 134 as Surrey total 415 against Durham, who will start day three at The Oval 152 in arrears.
Stoneman ton puts Middlesex in strong position September 18, 2024
Mark Stoneman scores 115 as Middlesex total 358 and reduce Derbyshire to 74-3 at stumps, still 111 behind.
Sex Education actor's arrest to be investigated September 18, 2024
Reece Richards was returning home to Fulham when he was pepper-sprayed by Met Police officers.

Parties reach consensus on House panels, Congress may head 4 September 19, 2024
After days of deadlock, political parties have agreed on the distribution of parliamentary standing committees. Congress will lead four key panels, including external affairs and agriculture. Trinamool Congress gets two committees, while Samajwadi Party secures a Rajya Sabha panel. JDU will receive one from BJP's quota despite not being entitled.
TNN
Big expose! How Indian team, cricketers are targeted in Australia September 19, 2024
Ahead of the upcoming five-Test series between India and Australia for the Border Gavaskar Trophy, Aakash Chopra exposed how Australian media targets Indian players. He shared an incident from India's 2018-19 tour where broadcasters amplified a heated exchange between Ishant Sharma and Ravindra Jadeja to tarnish their image, revealing this on a podcast on YouTube.
TOI SPORTS DESK
Move towards landmark poll reform, says Shah; BJP stunt, claims Kharge September 19, 2024
TNN
Bengal Medical Council to scrap Ghosh's registration September 19, 2024
The West Bengal Medical Council will cancel the medical registration of former RG Kar Medical College principal Sandip Ghosh after he did not reply to a showcause notice. Currently in jail, Ghosh faces several irregularity charges. The council aims to finalize the cancellation by Thursday, following pressure from various medical associations.
SUMATI YENGKHOM
Star seeks $940 million from Zee over failed cricket deal September 19, 2024
Star India has filed a claim for $940 million in damages against Zee Entertainment Enterprises in the London arbitral court due to payment defaults on cricket broadcasting rights. The arbitration process is ongoing, with Zee refuting the claims and planning to contest them, asserting that Star breached the agreement first.
REEBA ZACHARIAH
EY staffer's death puts focus on work stress September 18, 2024
Anna Sebastian Perayil's death at EY in Pune has led to calls for better employee well-being in India Inc. HR leaders emphasize the need for improved work-life balance. This incident follows another case of a young professional's death due to work pressure, highlighting growing concerns over workplace stress and management practices.
SUPRIYA ROY AND VEENA MANI
SpiceJet's 3,000-cr QIP oversubscribed September 18, 2024
TNN
In first cut in 4 years, US Fed slashes rates by larger 50bps September 18, 2024
The US Federal Reserve has lowered its benchmark interest rate by half a percentage point to bolster the labour market. The new rate range is now 4.75% to 5%. Further cuts are expected in 2024 and 2025 as policymakers balance inflation and employment goals amid rising economic uncertainties.
Bloomberg
Starting early: Pension a/cs for children September 18, 2024
Finance Minister Nirmala Sitharaman has unveiled NPS Vatsalya, a new pension scheme designed for minors to foster long-term financial security. The initiative was simultaneously launched at 75 locations across India, distributing over 250 PRANs to young subscribers. The scheme aims to instill saving habits early and leverage compounding for substantial future wealth.
TNN
RBI's pause may continue, Dalal Street to tread cautiously September 18, 2024
The US Federal Reserve's decision to cut rates by 50 basis points is unlikely to prompt an immediate reaction from RBI. This move could help stabilize the rupee and lower borrowing costs. Experts have mixed opinions on its impact, with some seeing benefits for NBFCs while others remain cautious about broader economic effects.
TNN