Manta's founder reveals that Lazarus attempted to attack Zoom using a very real "legitimate face."

CN
1 day ago

Source: Cointelegraph Original: "{title}"

Kenny Li, co-founder of Manta Network, stated that he encountered a highly sophisticated phishing attack on Zoom, where the attacker used a live video of a familiar person to try to get him to download malware.

Li mentioned in an X post on April 17 that the meeting appeared very real, with the impersonator turning on the camera but without sound, and a suspicious prompt appeared asking him to download a script file, which raised his alert.

He said, "I could see their real faces, everything looked very real. But I couldn't hear their voices. The system prompted me to update Zoom, but it asked me to download a script file. I immediately exited the meeting."

Afterward, Li attempted to verify the impersonator's identity through a Telegram call, but they did not respond and soon deleted all messages and blocked him.

Li believes this attack was carried out by the North Korean state-sponsored Lazarus Group.

The co-founder of Manta Network successfully took screenshots of his conversation with the attacker, where Li initially suggested moving the call to Google Meet, and he saved these conversation records before the messages were deleted.

In an interview with Cointelegraph, Li stated that he believes the live footage used in the video call was taken from past recordings of real team members.

"It didn't look like it was AI-generated. The quality looked like typical webcam quality."

Li confirmed that a real person's account had been compromised by the Lazarus Group.

Li advised caution regarding any requests to download content. He urged other members of the crypto community to always be vigilant about any sudden requests to download anything. "The biggest red flag always comes from downloaded content. Whether it's an update, attachment, application, or any other form, if you need to download something to continue communicating with the other party, do not download it."

The Manta executive acknowledged that such attacks can easily succeed against crypto executives who are used to receiving information and accepting sudden meeting requests.

"These hackers exploit your emotional connections and possible mental fatigue to carry out their attacks."

Other members of the crypto community have had similar experiences, and Li is not the only one targeted by hackers in recent days.

"They also made me download Zoom through their link, claiming it was their business version. Although I have Zoom on my computer, I couldn't use it," said a member of ContributionDAO.

"They claimed it had to be their registered business version. When I asked to switch to Google Meet, they refused."

Crypto researcher and X user "Meekdonald" stated that one of their friends also fell victim to the same strategy that Li avoided.

Related: Analyst: History shows that when gold prices hit new highs, Bitcoin will follow suit within 150 days.

免责声明:本文章仅代表作者个人观点,不代表本平台的立场和观点。本文章仅供信息分享,不构成对任何人的任何投资建议。用户与作者之间的任何争议,与本平台无关。如网页中刊载的文章或图片涉及侵权,请提供相关的权利证明和身份证明发送邮件到support@aicoin.com,本平台相关工作人员将会进行核查。

Bitget:注册返10%, 送$100
Ad
Share To
APP

X

Telegram

Facebook

Reddit

CopyLink