Researchers at Bitdefender Labs remain vigilant in their mission to inform users about the latest scams and internet threats that put their security and finances at risk.

The most recent discovery by Bitdefender Labs sheds light on cybercriminals exploiting an alleged assassination attempt on former US President Donald Trump to carry out extensive crypto-doubling schemes.

Stream-jacking attacks on YouTube, a tactic where hijacked channels are utilized to promote fraudulent schemes, are not new. However, cybercriminals are continuously improving and adapting their strategies to maximize their impact and success.

In a recent development, threat actors have taken advantage of the assassination attempt against Donald Trump to entice unsuspecting victims into falling for their crypto-doubling scam. Bitdefender researchers identified several hijacked YouTube channels broadcasting deep fake live streams featuring Elon Musk since July 16. These streams claim to provide insights into the supposed assassination attempt on Trump.

While the videos themselves do not explicitly mention the incident, the descriptions of the channels provide misleading context, falsely linking Elon Musk to political support for Trump. One channel description states that “Elon Musk plans to provide about $45 million a month to a new political committee supporting former US leader Donald Trump.” Another description claims, “Former President Donald Trump was the target of an apparent assassination attempt Saturday at a Pennsylvania rally, just days before he was to accept the Republican nomination for a third time.”

The fake videos depict a scenario where Trump is shot and wounded, surrounded by Secret Service agents, and rushed to safety. Although Trump’s campaign reassured the public that he is doing well after the incident, the panic that ensued at the rally was palpable. Billionaire Elon Musk’s statement expressing full support for Trump added another layer of complexity to the narrative, hinting at potential political endorsements in the upcoming election.

Not all hijacked YouTube channels have changed their names, but some have been renamed to “Tesla” or “Donald Trump Jr.” These channels have had their original content replaced with live streams promoting crypto-doubling offers under titles like “Elon Musk Reveals Insights on Trump Assassination Attempt and Election Support.”

The scope of this scam is concerning, as some of the hijacked channels have subscriber counts in the millions, with others ranging from hundreds of thousands to over seven hundred thousand.

Viewers are prompted to scan a QR code embedded in the videos to participate in a crypto giveaway. However, these QR codes direct users to fraudulent websites hosted on domains that mimic well-known brands like Tesla or associate Musk’s and Trump’s names.

Malicious domains include musktrump[.]org, tesla-elon[.]gives, elomusk[.]finance, muskrise[.]io, and taketesla[.]org. Bitdefender’s anti-phishing and anti-fraud systems have successfully detected and blocked these domains.

To protect against crypto-doubling scams, Bitdefender researchers recommend being cautious of click-bait titles, checking for malicious domains, securing YouTube accounts, scrutinizing crypto investment promises, avoiding scanning QR codes in videos, inspecting YouTube channels for suspicious activity, reporting any questionable behavior, using comprehensive security solutions, and utilizing Scamio for verification.

As cybercriminals exploit significant events to further their schemes, individuals must remain informed and vigilant to protect themselves from sophisticated scams like these. By following the recommended precautions and leveraging advanced security solutions, users can safeguard their online presence and financial well-being.

Source link