Attackers are posing as well-known crypto investors on platforms like Telegram. They express interest in your project and want to set up a video call through Calendly. A fake Calendly link is added to the meeting invitation. Clicking this link downloads and runs a malicious script on your Mac that can steal data or compromise the system.
The founder of a cryptocurrency startup (Doug) was attacked by a fake “Ian Lee” claiming to represent Signum Capital, a real investment firm. Fooled by the detailed profile, Doug agreed to a meeting through Calendly, but after clicking the meeting link, Doug encountered technical difficulties and was asked to run a script that supposedly fixed the problem. He unsuspectingly ran the script and unknowingly installed malware.
The malware used in this attack is associated with BlueNoroff, a North Korean hacker group known for its attacks on cryptocurrency companies.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
