Aurora Labs exec details 'fascinating and devious' crypto scam he almost fell for

Published at: Aug. 8, 2022

Aurora Labs' head of product, Matt Henderson says there is a sophisticated over-the-counter (OTC) transaction scam running about that almost duped him into losing a stash of his hard-earned cryptocurrency. 

Henderson detailed his personal run-in with a scam artist known as ‘Olai’ to his Twitter followers on Aug. 5. 

Olai's scam essentially involves tricking a victim into believing payment had been received for an OTC crypto transaction, when in fact it wasn’t.

Today I nearly got caught by a fascinating and devious crypto scam during an OTC transaction. Read on to learn what happened, so you can avoid it happening to you.

— Matt Henderson (@dafacto) August 5, 2022

How it worked

Henderson explained the crypto scam began when Olai contacted him on the Telegram messaging app, inquiring about purchasing AURORA tokens with USC Coin (USDC).

The pair agreed to conduct the transaction via escrow, a common strategy by which a trusted, neutral third party holds assets on both sides of the transaction and releases them to the counterparty when payment conditions are met.

In this case, Henderson selected Aurora Labs’ head of security Frank Braun to act as the escrow agent, who he initially referred to as "Steve" in the Twitter thread. 

Olai suggested: 1. I send the AURORA to Steve2. Olai sends me a small USDC test transaction3. Steve send Olai an small AURORA test transaction4. Olai send me the USDC balance5. Steve then sends them the AURORA balance

— Matt Henderson (@dafacto) August 5, 2022

However, Henderson caught wind of something suspicious when his escrow partner shared a screenshot of him supposedly giving the go-ahead to release the full amount of AURORA tokens to the buyer. 

According to Henderson, the scammers replicated his Discord profile and directed Braun to release the AURORA token balance to the scammers.  

Discord's blocking function made sure Henderson was unaware his profile had been cloned and scammers were impersonating him. 

Based on this, some security steps I'll take in the future:1. All funds sent to the escrow. No exceptions.2. Inspect transactions in block explorers. Don't accept verbal confirmations.3. Always create group chats yourself.4. Verify IDs and confirmations out of band.

— Matt Henderson (@dafacto) August 6, 2022

After successfully evading the con, Henderson later unpacked the intricacies of the scheme, warning anyone trading crypto through OTC means to take extreme caution and avoid falling victim to the sophisticated scheme.

Related: Solana-hacked crypto could be claimed as a tax loss: Experts

He also shared that the scammer named ‘Olai’ may still be active in the community, as a person using a similar name and tactic has been spotted on Telegram, according to Twitter user Scott Yeager.

"How curious... I was recently approached by an Olai Olsen on Telegram attempting to initiate an OTC deal and offering USDC. Same character?"

Earlier this year, the United States Federal Trade Commission found that nearly half of all crypto-related scams originated from social media platforms in 2021. 

In a report in June, the FTC reported that as much as $1 billion in crypto has been lost to scammers throughout the year, more than a five-fold increase from 2020. 

Tags
Related Posts
Whale Alert Teams Up With BitcoinAbuse to Fight Crypto Crime
Whale Alert and BitcoinAbuse are teaming up to fight crypto crimes together. Fighting scammers On Sept. 3, Whale Alert, a service dedicated to tracking large cryptocurrency transactions, announced that it will start collaborating with BitcoinAbuse to better fight cryptocurrency-related crimes. BitcoinAbuse is a public database of Bitcoin (BTC) addresses used by hackers and criminals. Whale Alert went on to say: “We will now report transactions made to scammers and keep track of their assets. You can help make crypto safer by reporting scams, black markets and hacks on the website BitcoinAbuse.com.” Whale Alert announces Version 2.0 Earlier today, Whale Alert …
Blockchain / Sept. 3, 2019
Expert Warns: Don’t Trust Ransomware Groups Amid Pandemic
A cybersecurity expert explained why he is convinced that the promises made by ransomware groups amid the pandemic are irrelevant. Brett Callow — threat analyst at cybersecurity firm Emsisoft — told Cointelegraph that multiple ransomware groups recently made promises to halt their activity against medical organizations amid the coronavirus pandemic. Still, he believes that those promises are irrelevant: “The claims of a ceasefire made by ransomware groups are irrelevant [and] should be completely disregarded. Would you leave your front door unlocked simply because the local burglars had pinky-promised not to rob you? Probably not. The story of the frog and …
Blockchain / April 16, 2020
US SEC Seeks Sanctions Against Individuals Behind Alleged Crypto Scam PlexCoin
The U.S. Securities and Exchange Commission (SEC) is seeking sanctions against the individuals behind the allegedly fraudulent Initial Coin Offering (ICO) known as PlexCoin, Finance Feeds reports September 26. The SEC has been involved in ongoing court proceedings against the owners of the associated firm PlexCorps — Dominic Lacroix and Sabrina Paradis-Royer — at the New York Eastern District Court since December 2017. The SEC’s initial complaint had charged the pair with violating securities law in respect to PlexCorps’ PlexCoin ICO in August 2017. The complaint had accused Lacroix — whom it called “a recidivist securities law violator in Canada” …
Blockchain / Sept. 26, 2018
Coin Bureau Youtube channel hacked despite 2FA protection
Coin Bureau, a popular information portal for cryptocurrency developments with over 600,000 followers on Twitter, experienced a security breach on its Youtube channel on Monday. Hackers allegedly uploaded a video with links to scam fiat/cryptocurrency addresses soliciting a token sale before being taken down by Youtube. According to Coin Bureau staff, they were baffled by the incident as its accounts were "secured with ultra-strong passwords and Google security keys." So our YouTube channel was just hacked. Have absolutely no idea how this happened. All accounts are secured with ultra strong passwords and Google security keys. @YouTubeCreators this is a serious …
Technology / Jan. 24, 2022
FTX hacker reportedly transfers a portion of stolen funds to OKX after using Bitcoin mixer
Hackers who drained FTX and FTX USA of over $450 million worth of assets just moments after the doomed crypto exchange filed for bankruptcy on Nov. 11, continue to move assets around in an attempt to launder the money. A crypto analyst who goes by ZachXBT on Twitter alleged that the FTX hackers have transferred a portion of the stolen funds to the OKX exchange, after using the Bitcoin mixer ChipMixer. The analyst reported that at least 225 BTC — worth $4.1 million USD — has been sent to OKX so far. 1/ Myself and @bax1337 spent this past weekend …
Blockchain / Nov. 29, 2022