Crypto Scammers Target Web3 Professionals with Sophisticated Interview Scheme

A new crypto scam has been identified, targeting web3 professionals with a sophisticated attack that tricks victims into running malicious code on their systems during fake job interviews. On-chain investigator Taylor Monahan flagged this scheme, which involves bad actors disguising themselves as recruiters for prominent crypto firms and approaching targets with lucrative job offers on platforms like LinkedIn, freelancing platforms, and Telegram.

The Scam Process

Once a victim shows interest in the job offer, they are redirected to a video interviewing platform called “Willo | Video Interviewing.” Although the platform itself is not malicious, it is designed to make the entire scheme look convincing to the victims. The process begins with standard industry-related questions, such as the victim’s views on significant crypto trends over the next 12 months. These questions help build trust and make the interaction seem legitimate.

However, the real attack unfolds during the final question, which requires recording a video response. When trying to set up the video recording process, victims encounter a technical issue with their microphone or camera. The website then presents malicious troubleshooting steps masked as a solution to the issue.

The Malicious Attack

If a user follows the steps, which may involve executing system-level commands depending on their operating systems, it grants attackers backdoor access to their devices. According to Monahan, this access allows attackers to do anything on the device, including bypassing security measures, installing malware, monitoring activities, stealing sensitive data, or draining cryptocurrency wallets without the victim’s knowledge.

β€œIt allows them to do anything on your device. It’s not really general purpose stealer, it’s general purpose access. Ultimately they’ll rekt you via whatever means are required,”

Precautions and Recommendations

To avoid falling victim to this scam, Monahan advises crypto users to avoid running unfamiliar code. Those who may have been exposed to such attacks are recommended to wipe their devices entirely to prevent further compromise.

Tips to stay safe:

  • Avoid running unfamiliar code on your device.
  • Be cautious of job offers that seem too good to be true.
  • Verify the authenticity of recruiters and companies before engaging in job interviews.
  • Keep your device’s operating system and software up to date.
  • Use strong antivirus software to detect and prevent malware.

Stay Informed with Global Crypto News

Stay up to date with the latest crypto news and trends on Global Crypto News. Our platform provides you with the latest information on cryptocurrencies, investing, and finance. Follow us for more news and updates on the world of web3 and cryptocurrencies.