YouTube channels hacked and rebranded for live-streaming crypto scams

Published at: Oct. 24, 2021

A new report shared by Google’s Threat Analysis Group (TAG) highlights an ongoing phishing campaign against YouTube creators, typically resulting in the compromise and sale of channels for broadcasting cryptocurrency scams.

The TAG attributes the attacks to a group of hackers recruited in a Russian-speaking forum that hacks the creator’s channel by offering fake collaboration opportunities. Once hijacked, the YouTube channels are either sold to the highest bidder or used to broadcast cryptocurrency scams:

“A large number of hijacked channels were rebranded for cryptocurrency scam live-streaming. On account-trading markets, hijacked channels ranged from $3 USD to $4,000 USD depending on the number of subscribers.”

The YouTube accounts are reportedly being hacked using cookie theft malware, a fake software configured to run on a victim’s computer without being detected. TAG also reported that the hackers also changed the names, profile pictures and content of the YouTube channels to impersonate large tech or cryptocurrency exchange firms.

According to Google, “the attacker live-streamed videos promising cryptocurrency giveaways in exchange for an initial contribution.” The company invested in tools to detect and block phishing and social engineering emails, cookie theft hijacking and crypto-scam live streams as a countermeasure.

Given the ongoing efforts, Google has managed to decrease the volume of Gmail phishing emails by 99.6% since May 2021. “With increased detection efforts, we’ve observed attackers shifting away from Gmail to other email providers (mostly email.cz, seznam.cz, post.cz and aol.com),” the company added.

Google has shared the above findings with the Federal Bureau of Investigation (FBI) of the United States for further investigation.

Related: CoinMarketCap hack reportedly leaks 3.1 million user email addresses

Over 3.1 million (3,117,548) user email addresses were reportedly leaked from a crypto price-tracking website called CoinMarketCap.

According to a Cointelegraph report, Have I Been Pwned, a website dedicated to tracking online hacks found the hacked email addresses being traded and sold online on various hacking forums.

CoinMarketCap acknowledged the correlation of the leaked data with their userbase but maintains that no evidence of a hack has been found on their internal servers:

"As no passwords are included in the data we have seen, we believe that it is most likely sourced from another platform where users may have reused passwords across multiple sites."
Tags
Fbi
Related Posts
PayPal to start letting US customers pay in Bitcoin at global merchants
Online payments giant PayPal will start to accept cryptocurrency as a medium of exchange at its millions of global merchants, the firm’s president and CEO revealed on Tuesday ahead of a formal announcement. News broke regarding PayPal’s rumored decision to accept cryptocurrencies early on March 30. Later in the day, the firm’s CEO, Dan Schulman, confirmed to Reuters that the rumors were true and that an official statement would be released imminently. The new system is expected to feature a crypto checkout service where users can pay for goods and services at approved vendors using their stored coins. The system …
Adoption / March 30, 2021
Google Keeps Promoting Crypto Scams Despite Strict Crypto Policies
While Google’s subsidiary, YouTube, is facing a lawsuit for promoting cryptocurrency scams, Google’s advertising platform continues to display fraudulent crypto ads through its advertising network. According to a report by Bitcoin (BTC) crypto exchange, CoinCorner, Google Ads was running an ad for CoinCorner’s phishing clone website, CoinCornerr.com. The issue was reported by CoinCorner’s marketing manager, Molly Spiers, on April 30. Google Ads promotes a crypto scam but doesn’t want to promote a real firm Spiers told Cointelegraph that CoinCorner’s team first noticed the fraudulent ad on Thursday morning after searching for “CoinCorner” on Google.com and Google.co.uk. According to the executive, …
Bitcoin / April 30, 2020
Coinbase reportedly down for some users after fixing connectivity issue
Nasdaq-listed cryptocurrency exchange Coinbase reportedly continues to face some system difficulties after experiencing a major connectivity problem. Both Coinbase brokerage and its trading platform Coinbase Pro were unavailable on Nov. 23 due to connectivity issues on both platforms, Coinbase Support officially reported. “This may cause failed trades, delayed transactions, and unexpected behavior on the webpage and mobile apps,” Coinbase said. The exchange said it resolved the issue as of 2:00 a.m. UTC on Nov. 24 as the problem was no longer affecting Coinbase products and services. According to Coinbase’s incident and scheduled maintenance history, the firm took less than two …
Bitcoin / Nov. 24, 2021
White House office seeks public opinion on crypto-climate implications
The Office of Science and Technology Policy (OSTP), an Executive Office of the President of the United States, commenced a study to identify the scope for offsetting energy use and climate changes related to digital assets. On March 9, United States President Joe Biden signed an executive order, directing various federal agencies to examine implications of digital assets on six key areas — consumer and investor protection, financial stability, financial inclusion, responsible innovation, the United States’ global financial leadership and combating illicit financial activity. As a part of the initiative, the OSTP invited the general public and other stakeholders to …
Adoption / March 26, 2022
Ukraine netted $70M in crypto donations since start of Russia conflict
Ukraine has received over $70 million in the form of cryptocurrencies since the start of the Russian-Ukrainian conflict, providing the nation with military equipment and humanitarian assistance. The figures came from a Feb. 24 report by blockchain data platform Chainalysis, which found the majority of the funds to have come in the form of Ether (ETH) and Bitcoin (BTC). ETH donors led the way with $28.9 million given, while donors of BTC and Tether (USDT) chipped in $22.8 million and $11.59 million respectively. Donations have also come in the form of nonfungible tokens (NFTs), such as UkraineDAO’s auction of a …
Blockchain / Feb. 27, 2023