Hello everyone, I trust y'all doing well over there this morning. We'll, it's no longer news of hackers hacking into different crypto accounts and cleaning everything from the account.
Hackers are on the increase daily, hacking into users accounts and stealing assets. If one is not careful with his/her login credentials, one can easily fall victim to these hacks.
Last week, a MetaMask user brought to Twitter that his account got hacked and all his assets worth $650k were stolen. He began to look for help and decided to reward anyone who could get back his account and assets.
He narrated how it happened, and said;
"This is how it happened, Got a phone call from apple, literally from apple (on my caller Id) Called it back because I suspected fraud and it was an apple number. So I believed them They asked for a code that was sent to my phone and 2 seconds later my entire MetaMask was wiped"
He stated that he got a call from Apple which then requested for an OTP for his account which he suspected fraudulent activity on. The moment he released the code, his account was hacked and all his assets were gone.
HOW THE HACKER PULLED OFF THIS KIND OF ATTACK
MetaMask saves your seed phrase file on your iCloud. So, in order to get these seed phrases, the hacker had to hack the user's iCloud account.
The hacker requested multiple and random password requests of the user's iCloud account so the user could suspect abonormal activity on his account.
Upon suspecting this abnormal activity in the account, the user got a spoofed call from the hacker. The spoofed caller ID of the hacker on the user's phone is Apple. With that, the user thought it was actually from Apple and would believe and trust whatever they say.
The Caller (hacker) the requested for an OTP sent to the user phone after telling him there's a suspicious activity on the account and he would like to help him secure the account further with the OTP.
The user discloses the OTP to the hacker, and boom!!! the hacker gets access to his assets.
HOW TO BE SAFE
One has to be very careful and vigilant with his/her credentials. A simple spoofed call can make one loose all his/her assets just like this user. Spoofed calls are also very rampant these days so one should be very careful.
Do not click on any and every link sent to you via email, text, or social medias. They could be traps and phishing links.
Lookout for phising links by makeing sure the site you're filling your login credentials into is the correct one. Check the spelling of the site and confirm it is the right one before filling your details.
Make sure the site you're accessing is encrypted with SSL. If it is not, simply leave that site.
Finally, Companies or business organisations will never ask you for OTP. If Apple or a network provider calls you on phone and requests for an OTP sent to your phone, just know it's an hacker trying to access one of your accounts.
I hope that this helps a lot of persons. Thank you so much for stopping by and for your continuous support. I really appreciate.
Source:
https://watcher.guru/news/metamask-warns-apple-users-as-a-man-lost-650000-in-a-phishing-scam
Hello dear @vectorshore
Your post has been manually upvoted by @judexex
You can use our tag #blurtainment to get your future posts seen
Vote our founder @nabeeel as your witness, link below
VOTE for Witness
REMEMBER TO GIVE US SOME DELEGATION AS WE ARE STRONGER TOGETHER, NO AMOUNT OF DELEGATION IS SMALL FOR US.**
Join us on WHATSAPP, TELEGRAM and [DISCORD](https://discord.gg/he6nHbMtpf
Thank you so much @judexex and @blurtainment for your continuous support. I really appreciate.
Thanks for this instructive content. I learned a lot more.
Thank you so much. I'm glad it is useful to you.
Hi, @vectorshore,
Thank you for your contribution to the Blurt ecosystem.
Please consider voting for the witness @symbionts.
Or delegate to @ecosynthesizer to earn a portion of the curation rewards!
Thank you so much @ecosynthesizer for your continuous support. I really appreciate.