BlockFi Customers Targeted by Sophisticated Phishing Scams
BlockFi customers have recently encountered convincing phishing attacks aimed at getting sensitive information like the private keys of their wallets.
They allegedly got emails that were from the firm telling them to connect the wallet for the sake of completely withdrawing their remaining funds. Scammers have made a lot of money this way.
Many unsuspecting individuals lost all of their virtual currencies this way. For the record, Plumferno is the investor that has reported that the scammers stole about $250 million in five days on one platform alone.
Impact on BlockFi and Chapter 11 Bankruptcy
BlockFi, a firm that lends digital currency, is one of many similar entities that has filed for Chapter 11 bankruptcy. It did this because it was unable to withdraw funds following the bankruptcy of FTX cryptocurrency exchange and Silicon Valley Bank asset shutdown.
However, the situation will only be positive, as the crypto platform will emerge in the future and will inform all customers about opportunities for their remaining assets to gradually claim over several months.
The phishing messages denoted that the actor behind it specially crafted the BlockFi team’s identity. The email the customer received had no typos or egregious errors. It also shows authentic brand elements, for example, the the firm’s logo.
The alleged cybercriminals also sent out the mails from the “noreply@everbridge.net” email address that appeared very innocent and it has gone unnoticed by the spam filters.
Recipients list these emails as coming in BlockFi-related e-mail addresses onto which their addresses of MailerLite’s breach in January were traced by Plumferno.
Another occurrence of ransomware filtration scheme relevant to FTX users/creditors is the recently documented phishing attack on the basis of a different company logo by Plumferno.
Remedial Actions by BlockFi
As part of the remedial actions, BlockFi highlighted the sudden rise in the number of phishing ploys and spammers who are calling the company’s clients.
They advised the customers to exert extra caution against email scams and have heightened awareness of unusual personal addresses like phone calls and text messages, as well as social media.
In addition to this, There is a statement by BlockFi, which states that one should log in by going to the actual website directly rather than clicking on the links in emails.
For customers who have fallen victim to this latest phishing scam and have connected their wallets to the fraudulent site, BlockFi recommends revoking access to the smart contract and immediately revoking the app’s access to their wallet to mitigate further risks.