US State Issues Order Freezing Crypto at Exchanges in Pig Butchering Scam Crackdown

October 1, 2022 Bitcoin.com

Florida govt warns against auto warranty scammers asking crypto payments

September 11, 2022 Coin Telegraph

Regardless of the methods used by scammers to contact potential victims, the FDACS newsletter highlighted five red flags that can help citizens identify and evade possible scams.

The Florida Department of Agriculture and Consumer Services (FDACS) issued a warning sharing insights into identifying robocall scam marketing auto warranties, which includes being asked to pay for the services via gift cards and cryptocurrencies.

Consumer complaints against increasing robocall scams — wherein scammers use prerecorded calls to market and sell fraudulent services — led the Enforcement Bureau to order phone companies to avoid carrying robocall traffic.

Regardless of the methods used by scammers to contact potential victims, the FDACS newsletter highlighted five red flags that indicate scams.

*Five red flags for identifying scams. Source: fdacs.gov*

Stressing on some of the go-to payment methods often being recommended by the scammers, the announcement read:

“Payment Type: If you are asked to pay with a gift card or cryptocurrency, it’s a scam.”

In addition to asking Florida residents to refrain from making crypto payments, the FDACS reiterated that no government officials would ask for personal information, such as their Social Security or credit card numbers, adding that “Only scammers will require one of those kinds of payment, and once you send the money, you probably won’t get it back.”

Although the newsletter mentioned the impossibility of tracking down crypto funds from hackers, numerous corporations, including Velodrome and Curve Finance, have successfully recovered stolen funds — thanks to the immutable nature of blockchain technology.

On Sept. 5, United States congressman Brad Sherman — a well-known crypto skeptic — acknowledged the rapid growth of the crypto ecosystem, claiming that banning cryptocurrencies was no longer an option.

Sherman stated that political donations and crypto lobbying make blanket banning cryptocurrencies impossible, adding that:

“We didn’t ban it at the beginning because we didn’t realize it was important, and we didn’t ban it now because there’s too much money and power behind it.”

Most lawmakers, including Sherman, favor implementing strict regulatory policies on crypto.

US Regulator: Investors Reported Losing Over $1 Billion in Crypto to Scams Since 2021

June 5, 2022 Bitcoin.com

Bitcoin veteran tricks crypto scammer into learning Lightning

March 24, 2022 Coin Telegraph

Bitcoin Scams

A Bitcoiner called Felix Crisan outfoxed a crypto scammer, getting them to set up a Bitcoin Lightning Wallet before putting them in their place.

There’s poetic justice to scammers getting beat at their own game. A cryptocurrency scammer met their match when trying to trick Bitcoiner Felix Crisan into sending them Tether (USDT).

The scammer tried to impersonate John Carvalho, the CEO of Synonym, a Bitcoiner Cointelegraph regularly cites. The scammer, who we will call “Fake John” from now on, wanted Crisan to send USDT, but Crisan, who’s been learning and getting involved with Bitcoin (BTC) for almost a decade, had other ideas.

Today I've convinced a scammer to install a Lightning Network wallet. BTW @BitcoinErrorLog there's someone impersonating you on Telegram pic.twitter.com/Qd0I9pAney
— felix crisan (@fixone) March 23, 2022

In brief, Crisan, chief technology officer of Netopia Payments, convinced the scammer to install a Lightning Network (LN) wallet, as he only deals with “LN assets.” So, Fake John installed a Bitcoin LN wallet, Blue Wallet. However, instead of sending Fake John the money, Crisan sent a message saying “Eat shit you fucking scammer!”

Justice was duly served — all while providing a free lesson in how to use Bitcoin LN.

On the other hand, it does raise questions as to whether Fake John will continue scamming people but now with Bitcoin LN addresses at their disposal.

The Bitcoin Lightning Network is a fast-growing near-instant layer-2 payment network built on top of the Bitcoin base chain. It’s brought innovations such as a quick way to pour a pint, while the aforementioned (real) John Carvalho is building his company on Lightning in partnership with Tether.

Crisan told Cointelegraph that he “constantly get DMs shilling one investment scheme or another.” Prudence and precaution are key when interacting and transacting online: Scammers, bots and cryptocurrency shills are commonplace on social media platforms, such as Twitter, while malware bots can sometimes interfere with wallet addresses to steal Bitcoin.

In terms of pursuing and maybe catching the miscreant, Crisan said that “if the scammer opened a channel with this node, then it would be possible. But there are also services that offer sort of on-demand channel creation, so that’s not a very reliable method.” However, ultimately, “only the node operator would be able to do this enhanced tracing.”

It’s not Crisan’s first time playing tricks on scammers. In 2019, he outsmarted a Bitcoin illiterate scammer into sending 21 million (and one) Bitcoin to their address. Bitcoin has a hard cap of 21 million Bitcoin, so the scammer clearly needs to do some homework.

1/ I spent some time today trolling a scammer. At one point I was "ready" to send him 21mil BTC to "trade". He was being considerate, though, only wanting 100k pic.twitter.com/4sxgf0d4DI
— felix crisan (@fixone) July 7, 2019

The above Tweet thread makes clear that some scammers are misinformed at best, while Bitcoin needs more people like Crisan.

Asked whether Crisan had any advice to share with cryptocurrency and internet users faced with a seemingly constant threat of scams, Crisan told Cointelegraph:

“Avoiding scams should always stem from a common history with the requestor — i.e., to determine if they are who they claim they are — to ask for a common reference. (Yesterday, this type of question was the first I asked this scammer, and the response almost confirmed that he’s not John.)”

Bitcoin stealing malware: Bitter reminder for crypto users to stay vigilant

March 15, 2022 Coin Telegraph

Bitcoin Scams

A Bitcoin user was tricked into sending 0.255 Bitcoin to the wrong address due to malware running on their computer.

An unfortunate Bitcoin (BTC) user was duped out of 0.255 BTC, almost $10,000, due to malware running on their computer.

Louis Nel, a tech blogger and crypto enthusiast, flagged the issue on Twitter, referring to his friend as ‘C.’

A friend sent 0.255BTC from his bitcoin wallet to an exchange.

He copied and pasted the wallet address on his computer.

After 4 hours he was worried when the funds did not arrive at the exchange...
— Louis Nel (@LouisNel) March 14, 2022

Nel told Cointelegraph that C’s “Bitcoin was sent from Kraken to VALR, a South African exchange,” however, “malware running on his computer intercepted the copied data and inserted a new wallet address when he pasted this without realizing.”

Kraken exchange confirmed that the wallet address does not belong to them; in further warning signs, Nel added that “there are nine transactions into that wallet, so others have been duped as well.”

The wallet address in question now has a value of 0.27 BTC but the funds have not moved. Nel shared a photo of the wallet address with connected addresses:

*The Bitcoin wallet with affected addresses. Source: Louis Nel*

Malware attacks are nothing new to the world of crypto finance or indeed to Bitcoin transactions. Chainalysis estimates that as much as $500,000 was stolen by just one malware bot over the course of 2021.

Plus, malware attacks can happen to seasoned cryptocurrency enthusiasts: C first got involved in Bitcoin and cryptocurrency in 2018. The malware attack is rotten luck for C, but a poignant reminder for cryptocurrency users.

Transactions on Bitcoin are irreversible, or “immutable,” meaning that once the funds have left a wallet, no party can manipulate or falsify data, or send back the money. While it’s one of the protocol’s strengths, in situations such as this malware attack, it’s a double-edged sword. Nel suggested:

“When working with Bitcoin and cryptocurrency you are responsible for your own security. When copying and pasting wallet addresses, always check the first four to six characters and the last four to six to ensure that they match.”

It boils down to one of the most crucial Bitcoin mantras, "don't trust, verify." If sending money, always reread addresses, checking "the entire address." If it's a large amount, send a test transaction of a few Satoshis to ensure the funds arrive safely at the desired wallet address.

For C, despite discovery then removal of the malware software, “the issue was still there and he sent me [Nel] a video where the wallet address would still dynamically change.” The laptop, which was running Windows 10, appears to still be compromised:

“All we know is that the malicious software became embedded in his operating system and was still doing its thing.”

Are crypto and blockchain safe for kids, or should greater measures be put in place?

February 26, 2022 Coin Telegraph

Analysis

Age verification and educations around the implications of blockchain technology should be enforced for minors dabbling in the crypto space.

Crypto is going mainstream, and the world’s younger generation, in particular, is taking note. Cryptocurrency exchange Crypto.com recently predicted that crypto users worldwide could reach 1 billion by the end of 2022. Further findings show that Millennials — those between the ages of 26 and 41 — are turning to digital asset investment to build wealth. For example, a study conducted in 2021 by personal loan company Stilt found that, according to its user data, more than 94% of people who own crypto were between 18 and 40.

Keeping children safe

While the increased interest in cryptocurrency is notable, some are raising concerns regarding the ways those under the age of 18 are interacting with digital assets. These challenges were highlighted in UNICEF’s recent “Prospects for children in 2022” report, which examines the impact that global trends may have on children, including concerns around the mainstream adoption of cryptocurrency.

Melvin Breton Guerrero, policy specialist for UNICEF’s Office of Global Insight and Policy, told Cointelegraph that he wrote the section of the report on digital currencies. According to Guerrero, this portion of the document is highly relevant because the cryptocurrency industry is still developing and, therefore, requires child safeguards:

“We need to take steps to prevent harm to children that could occur by third-parties engaging with cryptocurrency or from self-inflicted harm. As such, we need to prepare children under the age of 18 for a future where cryptocurrencies and blockchain applications are going to be a part of everyday life, just as the internet is.”

Although there are no official safeguards in place for children when it comes to accessing crypto and blockchain applications, Guerrero explained that one of the most important factors to consider is age verification. “We need to make sure that minors are not wrongly engaging with blockchain applications or misusing cryptocurrencies,” he remarked.

Given the anonymity of cryptocurrency transactions, Guerrero is aware that anyone can set up and access a cryptocurrency wallet. He added that some online cryptocurrency exchanges don’t question the age of their users. “A child can transact using various crypto wallets, and nothing can be done,” said Guerrero.

While there are technically no age restrictions when it comes to crypto, most major cryptocurrency exchanges have Know Your Customer (KYC) requirements to ensure that users are 18 or older. For example, Coinbase’s website explicitly states that users must be 18 or older to access its services. Before this policy was implemented in July 2017, however, Coinbase did allow users who were at least 13 years of age to access its services with parental consent.

It’s also interesting to note that the United States-based cryptocurrency exchange Gemini offers custodial accounts for minors. A company blog post published on Jan. 25 explains that the new service is powered by EarlyBird, a Gemini Frontier Fund portfolio company, and allows parents to invest in their children’s financial futures.

Caleb Frankel, co-founder and chief operating officer of EarlyBird, told Cointelegraph that the offering is focused on providing access to digital assets so that parents can invest on behalf of their children:

“Each account is held by a parent or guardian over the age of 18. We believe that crypto is part of a balanced modern portfolio and are prioritizing the education of families and the next generation of investors as digital asset markets mature.”

Frankel added that EarlyBird is not only working with Gemini but also proactively with regulators as well to ensure the development of a safe, secure crypto ecosystem. While progress is still being made, Guerrero commented that it’s important to ensure new wallets are always created by someone of legal age. Even though children don’t initially create the wallets, Guerrero believes this is one solution to ensure they properly utilize crypto funds.

Unfortunately, other challenges can also arise when children gain access to cryptocurrency. For instance, 2021 saw an increase in crypto scams, and children inexperienced in the sector are likely to be more vulnerable. Larry Cameron, chief information security officer of the Anti-Human Trafficking Intelligence Initiative (ATII) — an organization focused on combating human trafficking by monitoring cryptocurrency transactions — told Cointelegraph that there are many risks to consider when children dabble in cryptocurrency:

“Namely, the scams and fake platforms are risks for minors. Online predators are experts at seeking out inexperienced people and exploiting them. Data breaches, identity theft or fraud can be accomplished in the child’s name without their knowledge. Children are also more likely to lose a private key, but this happens even to adults.”

As such, Cameron believes that acquiring digital assets will make children a target for criminals. “Until crypto exchanges collectively add more verification and authentication measures when opening an account, children’s privacy will be at risk. Ideally, anyone under the age of 18 would need to provide documentation from their parents as permission to open an account,” he remarked.

Is blockchain a double-edged sword?

In addition to concerns around cryptocurrency, blockchain technology may also pose unintended consequences for minors. For instance, Guerrero explained that blockchain could be harmful to children because information recorded is permanent and immutable, and this immutability could conflict with current regulations:

“The European Union’s ‘right to be forgotten’ appears in Article 17 of the General Data Protection Regulation, or GDPR. This means that children who volunteer their information when they don’t necessarily understand the consequences should have a right when they are of legal age to have that information deleted. But blockchain, by definition, does not permit the deletion of information. So, how can we protect children’s data in this case?”

Moreover, Guerrero pointed out that while blockchain applications could help migrant children have a portable identity to access goods and services, they could also be leveraged as a form of surveillance. Given these concerns, he emphasized that there must be a balance when harnessing the benefits of blockchain technology: “Having this balance is important, and the blockchain and crypto community must keep this in mind when building new applications.”

Fortunately, some organizations are making progress on this front. For example, while UNICEF has recognized the challenges associated with digital currency adoption and children, the organization is aware that blockchain technology can be used for good.

Sunita Grote, lead of the ventures team for UNICEF’s Office of Innovation, told Cointelegraph that her office has been exploring the use of blockchain through its venture fund. “This fund provides seed funding to test open-source solutions that have the potential to accelerate results for children. Blockchain is one of the technology areas that we are exploring,” she said.

Specifically, Grote believes that blockchain-based solutions allow organizations and individuals to rethink the way problems can be solved due to their enhanced transparency, efficiency in systems and better coordination of data across multiple parties. With this in mind, Grote understands the potential that blockchain can have when it comes to responding to the threats for children in the online environment. She shared that UNICEF’s venture fund recently invested in two startups developing open-source, AI-powered solutions to address digital risks to children.

On the other hand, Grote also understands that blockchain could increase children’s exposure risk and harm online: “Being online can magnify traditional threats and harms that many children already face offline and can further increase vulnerabilities with online risks also present.”

Calling on the blockchain community to protect children

Given the risks associated with crypto and blockchain in regard to minors, Guerrero mentioned that it’s up to the blockchain and crypto community to help ensure the well-being of children moving forward. “The blockchain and crypto community must use their deeper technical understanding to actively engage with the child rights community,” he remarked.

As a solution, Guerrero thinks that blockchain applications should have built-in KYC requirements. This may be easier said than done, though, as he also believes that KYC remains an open question for crypto wallets and exchanges. Although KYC requirements may be challenging, Guerrero noted that having more educational tools will benefit the well-being of minors who are getting involved with crypto and blockchain. This may be a more realistic solution for the time being, as several educational initiatives are already underway.

For example, in 2021, Gemini partnered with Learn & Earn, an app that teaches students about financial literacy while earning fiat rewards. In addition to initiatives from exchanges, some governments are taking it upon themselves to teach youth about crypto. Last year, Colombia funded a mobile app, board game and book designed to educate young people on investing in cryptocurrencies and the stock market.

Other organizations are also developing additional educational projects. Aaron Kahler, founder and CEO of ATII, told Cointelegraph that ATII is hosting regular child safety training sessions and lectures on how to keep minors safe when engaging with digital assets and blockchain applications: “We are hosting a summit on the topic in May that will include a ‘dark webathon’ and child safety day. We are also bringing in folks from law enforcement and other organizations to speak about child safety.”

Warning: How ‘One Time Password’ bots can steal all your crypto

February 17, 2022 Coin Telegraph

Bitcoin Scams

Scammers have been using advanced hacking bots on Telegram designed to trick investors into divulging their two-factor authentication, leading to accounts being locked and wiped out.

Cybercriminals are using bots purchased on Telegram to trick users into giving them access to their cryptocurrency accounts.

According to a report from cybersecurity firm Intel471, One Time Password (OTP) bots are “remarkably easy to use” and are relatively inexpensive to operate relative to the amount that can be earned from a successful attack.

A Telegram bot known as ‘BloodOTPbot’ charges a monthly fee of just $300 to hackers to access. Fraudsters also have the option to spend an extra $20 to $100 on more phishing tools that target individual social media accounts on Instagram, Facebook and Twitter, financial services like Paypal and Venmo and crypto platforms such as Coinbase.

OTP bots are especially nefarious as they are generally the final step in the hacking process, after all necessary personal information has been gathered on the victim, known in hacker parlance as “the fullz”. Hackers use the OTP bot to stage a seemingly-official phone call, while simultaneously prompting the 2FA code from the user's crypto platform. Once the typically flustered user divulges the code, hackers gain immediate and total access to the victims account.

According to a report from CNBC, Maryland-based obstetrician Dr Anders Agpar, was the victim of such an attack, in which an “official sounding phone call” alongside a series of banner notifications on his phone, informed him that his Coinbase account “was in jeopardy”

Dr Agpar ended up in a situation where his two-factor-authentication (2FA) code was divulged over the phone and immediately afterwards he found himself locked out of his own Coinbase account which held approximately $106,000 in Bitcoin (BTC).

These types of attacks from OTP bots are increasing in frequency and are causing substantial losses to both institutions and individual retail investors. The bots have an extremely high success rate in extracting funds.

Customer service at Coinbase has been the subject of criticism in the past after angry users slammed the platform for a lack of responsiveness in dealing with hackers. In an attempt to improve response times and client relations, Coinbase acquired an Indian AI startup and created a phone line specifically for dealing with account takeovers and related attacks.

A Coinbase spokesperson told CNBC, “Coinbase will never make unsolicited calls to its customers, and we encourage everyone to be cautious when providing information over the phone. If you receive a call from someone claiming to be from a financial institution, do not disclose any of your account details or security codes. Instead, hang up and call them back at an official phone number listed on the organization’s website.”

Netflix announces new series on Bitfinex hack involving 120,000 Bitcoin

February 12, 2022 Coin Telegraph

Bitcoin Scams

The Netflix documentary will be about a New York-based couple and their link to laundering nearly 120,000 BTC tied to the crime.

Streaming and production giant Netflix will soon produce a documentary series on the infamous Bitfinex hack — one of the biggest financial crimes from 2016 stealing 119,756 Bitcoin (BTC) — worth $72 million at the time.

The Netflix documentary will be centered around a New York-based couple and their link to laundering nearly 120,000 BTC tied to the crime. According to Netflix, the documentary will be directed by American filmmaker Chris Smith with Nick Bilton as the co-executive producer. The announcement read:

“Netflix has ordered a documentary series about a married couple’s alleged scheme to launder billions of dollars worth of stolen cryptocurrency in the biggest criminal financial crime case in history.”

The plot is based on two main characters — Ilya Lichtenstein and Heather Morgan — the NYC couple linked to the 120,000 BTC heist and their involvement in laundering the stolen funds.

Bitcoin price movement since August 2016. Source: TradingView

As evidenced by the data from Cointelegraph Markets Pro and TradingView, ever since the Bitfinex hack, BTC prices soared over 7415% in just five years.

Netflix notes that “as the value of the stolen Bitcoin soared from $71 million at the time of the hack to nearly $5 billion, the couple allegedly tried to liquidate their digital money by creating fake identities and online accounts, and buying physical gold, NFTs, and more – all while investigators raced to track the money’s movement on the blockchain.”

Cointelegraph has previously tracked the movement of the stolen funds, with the latest movement dating back to as recent as Feb 1, 2022.

⚠ ⚠ ⚠ ⚠ ⚠ ⚠ ⚠ ⚠ ⚠ ⚠ 10,000 #BTC (383,540,711 USD) of stolen funds transferred from Bitfinex Hack 2016 to unknown wallethttps://t.co/kvvWQpZoq8
— Whale Alert (@whale_alert) February 1, 2022

Cointelegraph recently interviewed an anonymous cyber vigilante who tracked down a group of decentralized finance (DeFi) scammers responsible for the $25 million StableMagnet rug pull and eventually had the stolen money returned back to the investors.

Check out the whole episode to find out how the vigilante coordinated with the Manchester Police to retrieve a single USB device with roughly $9 million.

Beware of sophisticated scams and rug pulls, as thugs target crypto users

December 25, 2021 Coin Telegraph

Analysis

The year 2021 has seen an increase in “rug pulls,” a new scam capable of luring both early adopters and new crypto investors.

This year has been monumental for the cryptocurrency sector in terms of mainstream adoption. A recent report published by Grayscale Investments found that more than one-quarter of United States investors (26%) surveyed own Bitcoin (BTC), up from 23% in 2020. With the holidays around the corner, financial services provider MagnifyMoney also found that nearly two-thirds of surveyed Americans hope to receive cryptocurrency as a gift this year.

While crypto’s growth is notable, there has also been an increase in the number of scams associated with digital assets. A Chainalysis blog post highlighting the company’s “2022 Crypto Crime Report” revealed that scams were the dominant form of cryptocurrency-based crimes by transaction volume this year. The post notes that over $7.7 billion worth of cryptocurrency has been taken from scam victims globally. According to Chainalysis’ previous research, this number represents an 81% increase compared to 2020, a year in which scamming activity dropped significantly compared to 2019.

Scams are the biggest threat for building trust in crypto

Kim Grauer, head of research at Chainalysis, told Cointelegraph that while there are many different crypto-related crimes, scamming has become the largest in terms of value received by criminals. She added that scams represent a significant threat to building trust within the crypto ecosystem, as this may prevent people from investing in digital assets.

Grauer further mentioned that scams related to decentralized finance (DeFi) have been on the rise this year. With an annualized revenue in all DeFi protocols estimated at around $5 billion, this shouldn’t come as a surprise. More interesting, though, is that Chainalsyis has discovered that “rug pulls” have contributed to this year’s increase in scam revenue. According to Grauer, Chainalysis defines rug pulls as an instance when a person or developer decides to unexpectedly cease a project and run away with funds:

“Rug pulls have accelerated the amount of scamming the crypto space has seen this year. In addition to financial scams, rug pulls have exploited different vulnerabilities in the crypto space. Overall, they have taken $2.8 billion of cryptocurrency.”

Although rug pulls are a relatively new crime, Grauer believes these cases are becoming common in the growing DeFi ecosystem. To put this in perspective, the Chainalysis blog post notes, “Rug pulls have emerged as the go-to scam of the DeFi ecosystem, accounting for 37% of all cryptocurrency scam revenue in 2021, versus just 1% in 2020.”

The Chainalysis blog post also provides examples of some of the biggest rug pulls of 2021. For instance, the AnubisDAO case is mentioned as the second-biggest rug pull of this year, with over $58 million worth of cryptocurrency stolen. According to the post, AnubisDAO launched on Oct. 28, 2021, with claims of offering a decentralized currency backed by a number of assets. However, the project didn’t contain a website or white paper, and all of the developers went by pseudonyms. Miraculously, AnubisDAO still managed to raise nearly $60 million overnight, yet 20 hours later, all of those funds disappeared from AnubisDAO’s liquidity pool.

While AnubisDAO demonstrates a large-scale DeFi rug pull, new cases are occurring almost daily. An early Ethereum and DeFi investor who wishes to remain anonymous told Cointelegraph that they fell victim to a rug pull on Dec. 19, 2021. The anonymous source shared that the project is called “up1.network,” noting that many early Ethereum investors were discussing Up1 in a Discord chat group. They added:

“People I trusted were mentioning the project so I checked it out. I thought it was strange to see Up1 giving away airdrops, but thought it could have been affiliated with a DeFi token I had. I then connected my MetaMask wallet and clicked on ‘get airdrop’ but kept getting an error message. I did this three times, which gave the project access to my account.”

Unfortunately, once Up1 gained access to their account, three DeFi tokens worth $50,000 were instantly taken. “I revoked access after the fact on Etherscan so they couldn’t steal any more tokens,” they mentioned. The Ethereum investor then checked the DeFi platform Zerion where they saw the notifications that the DeFi tokens had left their wallet. Zerion also provided them with a wallet address to where the funds went, along with a message:

“0xc28a580acc42294787f44cffbaa788eaa4958056; You gave a web3 site / smart contract unlimited access to your funds (check who you gave access to and revoke here).”

While both AnubisDAO and Up1 are examples of DeFi rug pulls, it’s important to point out that the nonfungible token (NFT) ecosystem is also vulnerable to rug pulls. Most recently, the Bored Ape Yacht Club community fell victim to a rug pull when some members decided to connect their wallets to mint NFTs from a link posted in the group’s Discord channel.

Even more surprising is that rug pull scams are also targeting mainstream NFT projects. For example, on Oct. 28, 2021, the global beauty pageant Miss Universe sent out an official tweet announcing the launch of its NFTs on the Wax blockchain. Unfortunately, the people who minted these nonfungible tokens were part of a rug pull.

As a reminder: DON’T MINT from the links posted in Discord.

Due to amazing members of the community, we’ve obtained pertinent information about the hackers.

We’re working diligently to fix this. Priorities are restoring the server, prosecuting, and making it up to the minters
— Jenkins The Valet (@jenkinsthevalet) December 21, 2021

Jessica Yang, an NFT photographer, told Cointelegraph that when Miss Universe announced the launch of an NFT project, she didn’t question whether it was a scam or not because the pageant is widely known. “The price of each NFT was 0.06 Ethereum. That translates to around $230 for one. The artwork also has the beauty contestant’s face and country they are associated with plastered on it,” she remarked.

Yang also mentioned that the project was geared toward women, noting that Paula Shugart, the president of Miss Universe, previously stated:

“Miss Universe is going to be the first brand in the NFT space that is about women, about women’s empowerment, and embracing the technology, and moving forward. I love it; this is the first one that is away from other more male-oriented spaces.”

Given the brand’s reputation and appeal, Yang and many others minted Miss Universe NFTs, connecting their wallets to the platform. Yet Yang noted that the next day, Miss Universe deleted its official Instagram account. She then noticed that her funds disappeared entirely. Yang added:

”One red flag I saw was coming from their Discord. The moderators kept trying to get everyone to buy Miss Universe NFTs, promising that they were going along with the roadmap. Their roadmap promised monthly AMAs, signed prints, and much more. Even Steve Harvey vetted the project.”

Do your own research

As the DeFi and NFT ecosystems continue to mature and grow, these environments will, unfortunately, be prone to rug pull scams until industry solutions are developed. In the meantime, the best course of action is for users to do their own research.

For instance, Grauer shared that every DeFi project should have a code audit available to make investors feel safer. “Many of the DeFi platforms that have been hacked don’t have code audits,” she remarked. The Chainalysis blog post also pointed out that “rug pulls are prevalent in DeFi because with the right technical know-how, it’s cheap and easy to create new tokens on the Ethereum blockchain or others and get them listed on decentralized exchanges (DEX) without a code audit.”

In addition to code audits, the anonymous Ethereum investor shared that after reviewing the Up1 site more closely, they could tell that it was fake. “For instance, the team was all anonymous, with just first names that couldn’t be clicked on to open a Twitter or LinkedIn profile.” Even with these precautions the anonymous source mentioned that wallet providers also need to do a better job of keeping users safe:

“If there is a questionable site, wallets should seek them out. I believe this technology can scale, but it has to be able to handle these scams. Otherwise, people will lose all their money.”

Following the Up1 rug pull, the anonymous source contacted MetaMask and shared that they got a response noting that it would flag the website.

It’s also important to point out that while a clear industry solution is yet to be developed, Grauer noted that, unlike fiat-related crimes, crypto payments can be traced to their source. With this in mind, she added that some cryptocurrency platforms are starting to take action to keep users safe from scams.

For example, crypto exchange Luno partnered with Chainalysis in 2020 to protect against a scam targeting South African crypto users. Eva Crouwel, head of financial crime at Luno, told Cointelegraph that one of the requirements from a regulatory framework point of view is to be able to monitor and act upon transactions that have a suspicion of money laundering, terrorist financing, sanctions or any other type of illicit activity. She noted that on-chain transactions must be monitored, as well as the design and the development of case management and user interface.

In terms of crypto investors keeping themselves safe from scams, Crouwel recommends staying away from offers that sound too good to be true, adding:

“Start by doing as much due diligence as possible. Look at the company’s/token’s social media profiles to see what other users’ experiences have been. You should also go through the company directors’ personal social media pages and look into their industry connections and employment background so ensure their history is sound.”

Indian prime minister Modi’s hacked Twitter account attempts BTC scam

December 12, 2021 Coin Telegraph

Bitcoin Scams

Soon after Modi's Twitter account with over 73.4 million followers got hacked, attackers shared misleading information about the mainstream adoption of Bitcoin and a 500 BTC giveaway.

The official Twitter account of Indian Prime Minister Narendra Modi got compromised earlier today, which was then used to share misleading information about the mainstream adoption of Bitcoin (BTC) and redistribution of 500 BTC among the Indian citizens.

On Dec. 10, Modi said in a virtual event virtual summit hosted by US President Joe Biden that technologies such as cryptocurrencies should be used to empower democracy and not undermine it:

“By working together, democracies can meet the aspirations of our citizens and celebrate the democratic spirit of humanity.”

While the long-awaited Lok Sabha Winter Session, a parliamentary meetup intended to discuss the legality of cryptocurrencies in the region, did not conclude the government’s stance on crypto, hackers from unknown origins managed to take control of the prime minister’s account with over 73.4 million followers to declare Bitcoin as a legal tender.

Bitcoin scammers declare the cryptocurrency as India's legal tender. pic.twitter.com/uTe1R7XUWZ
— Priya (@supesuonna) December 11, 2021

While the hack happened at midnight in India (around 4:00 pm ET), Twitter user Priya was among the many crypto enthusiasts that took notice of the untimely tweet that read:

“India has officially adopted Bitcoin as legal tender. The government has officially bought 500 BTC and is distributing them to all residents of the country. The future has come today!”

The post also included a link that urged unwary investors to sign up and claim their share of BTC. However, this was the second time Modi’s Twitter account got hacked and was used for crypto scams.

Soon after the hack, the unauthorized tweet was deleted and the hack was confirmed by the Prime Minister’s official account.

The Twitter handle of PM @narendramodi was very briefly compromised. The matter was escalated to Twitter and the account has been immediately secured.

In the brief period that the account was compromised, any Tweet shared must be ignored.
— PMO India (@PMOIndia) December 11, 2021

As Cointelegraph reported, hackers were able to breach Modi’s Twitter account back in Sept. 2020. Under the pseudo name ‘John Wick,’ the hackers shared several tweets asking the prime minister’s followers to “donate generously to PM National Relief Fund for Covid-19.”

The launch of India’s crypto bill sparked new concerns around the ban of private cryptocurrencies. While the meaning of ‘private’ was yet to be interpreted in the parliamentary meeting, the lack of information sparked panic among investors.

Clearing out the speculations around the crypto bill discussions, former Finance Secretary Subhash Garg, who was also the creator of the bill, dismissed the notion of banning “private cryptocurrencies” as a misinterpretation. In an interview with News 18, Garg said:

“[The description of the crypto bill] was perhaps a mistake. It is misleading to say that private cryptocurrencies will be banned and to intimate the government about the same.”

Bitcoin Scams

Keeping children safe

Is blockchain a double-edged sword?

Calling on the blockchain community to protect children

Scams are the biggest threat for building trust in crypto

Do your own research

Share this video