Scammer uses malicious Calendly link on X to impersonate cryptocurrency journalist
[ad_1]
Security experts are warning as malicious actors posing as crypto journalists are spreading fake Calendly bot clones on X.
according to X posts Scammers from blockchain security company SlowMist are targeting Chinese-speaking victims by posing as cryptocurrency journalists. Scammers send direct messages, including links that mimic the appearance of legitimate Calendly bots, to arrange interviews.
However, once the victim grants authorization to the bot’s fake clone, they inadvertently gain control of their X account, allowing the scammer to distribute phishing links through their posts.
While the scale of the scam attacks is unclear, SlowMist notes that scammers often communicate in broken Chinese and focus on cryptocurrency influencers.According to user @0xcryptowizard on X, cybercriminals Linked Crypto hacker group known as “Pink Drainer”.
SlowMist urges users to delete any suspicious applications or sessions in their X settings to reduce the risk of unauthorized access.
This isn’t the first time scammers have impersonated journalists to take advantage of victims and steal private data and cryptocurrency. In November 2023, crypto.news reported that SlowMist revealed a sophisticated phishing attack against crypto startup Friend.tech, in which fraudsters used fake interviews and malicious scripts to target users.
That same month, an unidentified scammer posed as a Forbes reporter and approached holders of Bored Ape Yacht Club non-fungible tokens (NFTs), asking them to try out the popular NFT series. One victim reported that during the interview, the scammers set up multiple call links and used a separate recording bot to record the screen.
