According to the Metaverse Post, SlowMist has uncovered a significant theft of cryptocurrency linked to a fraudulent Skype application that compromised users' security.

Metaverse Post reports on SlowMist's revelation of a serious crypto theft tied to a deceptive Skype app security breach.

In Brief

SlowMist's investigation revealed that the use of a fraudulent Skype application led to the hijacking of crypto funds, as it stealthily monitored and altered the user's transaction addresses without consent.

SlowMist, a player in the blockchain security arena, is shedding light on this alarming trend. has disclosed The phishing scheme involved a deceptive application masquerading as Skype, resulting in the loss of significant digital currency.

This incident emphasizes the escalating prevalence and sophistication of phishing attacks within the Web3 ecosystem, with popular social media applications like Skype, Telegram, and WhatsApp being major targets.

The SlowMist Security Team The investigation commenced when a user reported theft related to a pseudo Skype application they had downloaded. The analysis performed by SlowMist revealed that the application's signature indicated it likely originated from China.

The fraudulent app was operating with a version that didn’t match the official Skype release, using a modified version of an Android network framework called okhttp3 to carry out its malicious agenda.

New SlowMist Investigation Report:

Fake Skype App Phishing Analysis

Our recent report sheds light on how a counterfeit Skype app was instrumental in the theft of crypto assets within the Web3 landscape.

Explore our findings for deeper insights into this scheme and tips on safeguarding your assets!…

— SlowMist (@SlowMist_Team) November 12, 2023

Phishing Attack Methodology

The rogue app started by gathering images stored on the device, continuously monitoring for new content. It subsequently sent these images to a backend designed for phishing purposes. Notably, the domain ‘bn-download3.com’ had previously impersonated the Binance exchange.

This raises the possibility that the group behind this attack may have conducted similar phishing operations in the past. The counterfeit Skype application altered network traffic, replacing legitimate cryptocurrency wallet addresses with those controlled by the attackers.

SlowMist's examination connected this phishing activity to a previous fraudulent Binance application. This link indicates a potential pattern of persistent wrongdoing by the same entity. Their analysis revealed that the addresses linked to this scam received a significant amount of USDT, and much of that value has already been moved elsewhere.

About SlowMist

The occurrence highlights the critical necessity of only downloading applications from verified sources to avoid falling prey to scams. SlowMist's exposure of this phishing tactic serves as an urgent reminder for the blockchain community to enhance their security vigilance.

Founded in January 2018, SlowMist has established itself as a reputable blockchain security firm with extensive experience in network security spanning a decade. They provide a variety of services, including security assessments, threat intelligence, and defense strategies. With a network of partners around the globe, SlowMist aims to strengthen the security of the blockchain ecosystem.

Disclaimer

In line with the Trust Project guidelines Please understand that the information shared here is not intended as, and should not be considered, legal, financial, investment, or any form of advisory content. It's imperative to invest only what you can afford to lose and to seek independent financial counsel if uncertain. For additional details, we recommend reviewing the terms, conditions, and support materials provided by the issuer or advertiser. Metaverse Post is committed to delivering accurate and impartial reporting, but please note that market conditions may change without prior notification.