followreportAccording to cybersecurity firm Intel471, the One Time Password (OTP) bot is “amazingly easy to use” and is relatively inexpensive given the number of successful attacks.
A Telegram bot called ‘BloodOTPbot’ charges hackers a monthly fee of only $300 to access it. Fraudsters also have the option of paying an additional $20 to $100 for phishing tools targeting social media accounts on Instagram, Facebook and Twitter, and financial services like Paypal and Venmo, and crypto platforms like Coinbase.
OTP bots are terrifying. This is usually the last step in the hacking process. After collecting all necessary personal data from the victim Known in hacker parlance as “the fullz,” hackers use OTP bots to call victims by pretending to be calling from a legitimate source. When the victim enters that 2FA code or any other information they ask the victim to enter on the phone. The information will be sent to the bot. The criminals then have access to the victim’s account.
followreport of According to CNBC, Anders Agpar, an obstetrician from Maryland, He was the victim of the attack, with “official phone ringings” along with a series of alerts on his phone. It informed him that his Coinbase account was “in danger.”
When Apgar picked up the phone Then a woman’s voice said, “Hello, welcome to Coinbase Security Protection. We have detected suspicious activity due to an unsuccessful login attempt on your account. And it’s requested from a Canadian IP address, if it’s not you, please press 1 to complete your account recovery protection.” This call takes only 19 seconds.
Agpar said he doesn’t remember whether he entered the 2FA code manually or if it automatically popped up on his screen. But what happened at that moment had his account locked from his Coinbase account, which had roughly $106,000 in Bitcoin (BTC), in less than two minutes.
In a statement on CNBC, a Coinbase spokesperson said: “Coinbase will not accidentally call its customers. And we encourage everyone to be careful when giving information over the phone. If you get a call from someone claiming to be from a financial institution (Whether it’s Coinbase or your bank), don’t reveal any of your account details or passwords, just hang up and call back on the official phone numbers listed on the organization’s website.”
These types of attacks from OTP bots are increasing in frequency and causing huge losses to both institutions and retail investors.
The post warns: ‘One Time Password’ bot can steal your entire Crypto appeared first on Bitcoin Addict.