A new report from blockchain security firm SlowMist details a concerning rise in sophisticated psychological attacks targeting cryptocurrency users during the second quarter. These attacks increasingly leverage malicious tools and social engineering tactics to exploit victims.
Malicious browser extensions, such as one disguised as a security tool named ‘Osiris’, are being deployed to steal crypto assets. Attackers are also utilizing psychological manipulation, exemplified by a case involving fake hardware wallets that resulted in a single victim losing $6.5 million.
Social engineering remains a prevalent threat vector. Scammers are creating fake interfaces mimicking legitimate services like Revoke Cash and exploiting features such as WeChat’s account recovery system to deceive users into compromising their assets.
SlowMist disclosed it received reports concerning 429 incidents of stolen funds during the quarter. The firm successfully assisted in recovering approximately $12 million for 11 affected victims.
In light of these evolving threats, SlowMist strongly advises users to exercise extreme caution: meticulously verify the source of all software and browser extensions, remain highly skeptical of unsolicited offers or requests, and double-check the authenticity of websites and services before interacting with them.