Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Crypto Inferno $87M Heist Revealed

January 16, 2024
Reading Time: 3 mins read
in News
Crypto Inferno $87M Heist Revealed

Embarking on a cybercrime odyssey between November 2022 and November 2023, the notorious Inferno Drainer executed a meticulously planned heist under the guise of cryptocurrency giant Coinbase. Singapore-based cybersecurity firm Group-IB uncovered the audacious plot, revealing the malicious actors’ creation of over 16,000 unique domains within a year. The elaborate scheme involved high-quality phishing pages, seducing over 137,000 victims into connecting their cryptocurrency wallets to the attackers’ infrastructure, cunningly mimicking Web3 protocols to authorize unauthorized transactions.

Operating on a scam-as-a-service model, the Inferno Drainer invited affiliates to partake in the criminal venture, enabling them to upload the malware to their own phishing sites or avail the developer’s services for crafting and hosting phishing websites. Group-IB’s analysis exposed the attackers’ ability to mimic over 100 cryptocurrency brands through meticulously designed pages dispersed across thousands of unique domains. Adding a layer of complexity, the perpetrators camouflaged their JavaScript-based drainer within GitHub repositories, amplifying the challenge of detection.

A deeper dive into 500 domains revealed the initial hosting on a GitHub repository, intriguingly attributed to a non-existent user named “kuzdaz.” Deceptive tactics extended to platforms like Discord and X, enticing victims with promises of free tokens through airdrops. Operating under aliases like seaport.js and coinbase-wallet-sdk.js, the Inferno Drainer masqueraded as popular Web3 protocols, including Seaport, WalletConnect, and Coinbase. While the cyber storm may have temporarily subsided, the lingering presence of the Inferno Drainer throughout 2023 underscores the perpetual threats haunting cryptocurrency holders, emphasizing the imperative for sustained vigilance in the ever-evolving realm of cybercrime.

As the cryptocurrency community navigates the aftermath of this brazen attack, the lessons learned serve as a poignant reminder of the constant need for robust cybersecurity measures in an ecosystem where threats evolve at an alarming pace.

Reference:
  • Inferno Drainer Scam Stats
Tags: CoinbaseCryptocurrencyCyber NewsCyber News 2024CybercriminalCybersecurityDrainercriminalJanuary 2024NetworkRansomwareScam
ADVERTISEMENT

Related Posts

Qantas Wins Injunction Before Data Leak

Qantas Wins Injunction Before Data Leak

October 6, 2025
Smishing targets routers in Belgium 2025

Flagstar Settles Accellion Breach Case

October 6, 2025
Qantas Wins Injunction Before Data Leak

ParkMobile Settles 2021 Data Breach

October 6, 2025
Smishing targets routers in Belgium 2025

Georgia Tech Pays 875,000 In Cyber Fraud

October 3, 2025
Hackers Claim Deletion Of Nursery Data

IoT Routers Used In Targeted In SMS Phishing

October 3, 2025
Hackers Claim Deletion Of Nursery Data

Hackers Claim Deletion Of Nursery Data

October 3, 2025

Latest Alerts

Oracle Issues Security Alert

Hackers Exploit Zimbra Zero Day Flaw

CISA Adds New Flaws to KEV Catalog

Facebook Scams Target Seniors With Malware

Android Spyware Poses As Signal And Totok

Chrome Update Fixes 21 Security Flaws

Subscribe to our newsletter

    Latest Incidents

    Discord Reveals Data Breach Incident

    Abracadabra Hit by Third DeFi Hack

    Extortion Group Launches Salesforce Data Leak

    Hackers Target Oracle Apps For Extortion

    UK Renault Dacia Customer Data Stolen

    Hospital Cyberattack Leaks Patient Data

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial