Reddit NetSec

AlienVault OTX General

CVE Database V5

Exploit-DB RSS Feed

Reddit InfoSec News

CIRCL OSINT Feed

ThreatFox MISP Feed

AlienVault OTX Vulnerabilities

AlienVault OTX Malware

An ongoing social engineering campaign is targeting cryptocurrency users through fake startup companies impersonating AI, gaming, and Web3 firms. The scammers create elaborate facades using spoofed social media accounts and project documentation on platforms like Notion and GitHub. They contact victims offering to pay them to test software, which is actually malware designed to steal crypto wallet contents. The campaign uses both Windows and macOS malware, including information stealers like Atomic Stealer. The threat actors go to great lengths to appear legitimate, even creating fake conference photos and merchandise stores. Multiple fake company identities have been identified as part of this campaign.

This threat involves an ongoing social engineering campaign targeting cryptocurrency users by impersonating legitimate AI, gaming, and Web3 startup companies. The attackers create highly convincing fake identities, including spoofed social media accounts, project documentation hosted on platforms like Notion and GitHub, and even fake conference photos and merchandise stores to build credibility. Victims are contacted with offers to test software purportedly developed by these fake companies. However, the software is actually malware designed to steal sensitive information from victims' systems, specifically targeting cryptocurrency wallets. The malware affects both Windows and macOS platforms and includes information stealers such as Atomic Stealer, which is known for extracting credentials, wallet keys, and other sensitive data. The campaign is notable for its elaborate deception techniques, leveraging social engineering to bypass technical defenses by exploiting user trust and curiosity. Multiple fake company identities have been uncovered, indicating a broad and persistent operation rather than isolated incidents. Although no direct CVSS score is assigned, the campaign's reliance on social engineering combined with malware capable of compromising cryptocurrency wallets makes it a significant threat to individuals and organizations involved in crypto asset management.

Detects Electron apps collecting HWID, MAC, GPU info and executing remote EXEs/MSIs

Detailed information about Crypto Wallets Continue to be Drained in Elaborate Social Media Scam. Get real-time updates, technical details, and mitigation strate

Title	Severity	Type	Source	Date

Threats Tagged 'atomic stealer'

Filter Threats

Threats Tagged 'atomic stealer'

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility