The FBI is warning about a new scam where cyber criminals exploited NFT aircraft on Hedera Hashgraph Network to steal Crypto from Cryptocurrency Wallet.
Aerdrops are a method of distributing cryptocurrency tokens to free the cryptocurrency tokens, usually as part of a marketing, community development or reward campaign, but are also used as fodder for scams.
“Hedera Hashgraph is a distributed account used by Hedra. Airdrop feature was originally created by Hedra Hashgraph Network for marketing objectives; however, cyber criminals can take advantage of this strategy,” can take advantage of this strategy to collect the victim data to steal cryptocurrency, ” FBI advisor,
In attacks targeting wallets on Hedera Hashggraph Network, the actor of the danger send unwanted NFTs or tokens to the user wallet, motivating users to click on URL to claim their reward.
Clicking on the link takes the victims to the fishing sites or dapps which asks them to input sensitive information like account password and wallet recovery seed phrases.
The attackers can then use this sensitive information to kidnap and vacate the victim’s wallet.
Hedra Hashgraph is a distributed laser technology (DLT) and public network, similar to Etreum and Bitcoin, but is built on a fundamentally different structure that is called hashgraph instead of blockchain.
Unlike the blockchain storing data in sequential blocks, the hashgraph uses a gossip protocol and virtual voting to achieve consensus, allowing rapid, more scalable and more energy-skilled operations.
This technique was introduced as the next generation distributed laser in 2018 for the purpose of crossing the boundaries of traditional blockchain, and scammers have started making it more target as it is more popular and increase in adoption.
The FBI says that the fraud currently promotes its fraud operations beyond unwanted NFT aircraft, including fishing emails, social media advertisements and fake websites.
Conservation advice
When receiving the aircraft alert, it is advisable to always verify their validity with the official source before attaching.
Verify using official customer service number/email address, and are never listed on email, as they can direct scammers to communicate communication.
During the claim or mining process of NFT, it is not important to share the password, seed phrase, or a bar password (OTP) until you started the contact.
Finally, cryptocurrency accounts should be regularly monitored for signs of unauthorized activity/transactions and suspected login efforts.
If you suspect that you have been compromised by the scammers, it is advisable to contact your account providers and report it as soon as possible.
Then, report the incident to the FBI Internet crime complaint center (IC3) With details of cryptocurrency addresses and transactions (ID, date, amount).
Manual patching is old. It is slow, error-prone and hard for scale.
On June 4, join Kandji + Tines, to see why the older methods are short. See the real -world examples of how modern teams use automation to patch rapid patching, risk cuts, obedient stay and leaving complex scripts.
