Mining Botnet Targeting Redis and OrientDB Servers Made Almost $1 Million First Malicious Chrome Extensions Detected Using Session Replay Scripts PSA: Beware of Sites Pretending to be Manual Firefox Updates The Week in Ransomware – February 2nd 2018 – TOR Sites Stealing Ransom Payments & GandCrab Firefox 59 Will Add a New Privacy Feature That Strips Sensitive Data From URLs New JenX IoT DDoS Botnet Offered Part of Gaming Server Rental Scheme InsaneCrypt (desuCrypt) Decrypter Remove the FF Update Checker Adware Firefox Addon Remove the 1Click System Mechanic System Optimizer PUP Remove the Time Tracking Adware Firefox Addon Remove CoinHive In-Browser Miner Remove Security Tool and SecurityTool (Uninstall Guide) How to remove Antivirus 2009 (Uninstall Instructions) How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo How to remove Google Redirects or the TDSS, TDL3, or Alureon rootkit using TDSSKiller Locky Ransomware Information, Help Guide, and FAQ CryptoLocker Ransomware Information Guide and FAQ CryptorBit and HowDecrypt Information Guide and FAQ CryptoDefense and How_Decrypt Ransomware Information Guide and FAQ How to Rename a Hyper-V Virtual Machine using PowerShell & Hyper-V Manager How to Install Hyper-V in Windows 10 How to Enable CPU Virtualization in Your Computer’s BIOS How to open a Windows 10 Elevated Command Prompt How to start Windows in Safe Mode How to remove a Trojan, Virus, Worm, or other Malware How to show hidden files in Windows 7 How to see hidden files in Windows Hundreds of users fell victims to email scams over the past week, sending over $1 million worth of Ethereum to a scammer who sent fake emails posing as the Bee Token ICO (Initial Coin Offering). The Bee Token ICO started on January 31 and ended on February 2, when the Bee team shut down the ICO after raising the $5 million they wanted to build their product, a blockchain-based house rental application, a-la Airbnb.

During the time the Bee Token ICO was going on, a scammer was sending emails posing as the Bee team and urging users who wanted to buy Bee Tokens to send Ethereum to wallets under his control. The Bee team became aware of this issue pretty soon into its ICO, and sent out three security alerts [1, 2, 3], informed people that the ICO was taking place via its website alone, and even created a Google Form to allow users to report scams. Despite the constant alerts from the Bee team, people kept falling for the fake emails, which were sent from addresses like: “ico.beetoken.421837378324190333.crowd.ico@fortumo.com.”

A copy of one such email was shared online earlier in the week: The scammer used multiple wallet addresses to receive funds from tricked users. Bleeping Computer was able to track down three of such wallets — 1, 2, 3— but there were multiple others shared online, but the full addresses were edited.

The three wallets contained over $1 million when the Bee Token ICO ended on Friday, but it is believed the hacker made off with even more money. Last week, another (or maybe the same) scammer tricked users participating in the Experty ICO into sending funds worth over $150,000.

Because of all these shady ICOs and cryptocurrency scams, Facebook decided to ban ads for ICOs and cryptocurrencies on its platform earlier this week. New Adobe Flash Zero-Day Spotted in the Wild Ransomware Hero to Receive FBI Award To receive periodic updates and news from BleepingComputer, please use the form below. Read more from bleepingcomputer.com…

thumbnail courtesy of bleepingcomputer.com