New malicious activity discovered by Kaspersky has revealed that the attackers were hiding behind technology company Nvidia. These attackers launched a fraudulent website to commemorate the company’s 30th anniversary, which invited visitors to participate in a 50,000 bitcoin giveaway. The crooks, however, erred by using the Nvidia logo in the incorrect purple color, when it was originally green.
To reach a specific community, scammers often act under the guise of well-known companies, Kaspersky explains.
The page contains a “Participate” button which, when clicked, takes the visitor to a page with detailed information about the giveaway – it is, however, full of spelling mistakes, which is unacceptable for a reputable company like Nvidia. The page encourages potential victims to donate before participating in the giveaway and includes an image of Jensen Huang, the CEO of Nvidia. Successful participants are told that they can double their donation or even hit the “jackpot” – 50,000 bitcoins. The page includes crypto wallet credentials for users to send their “donation”.
The scammers’ wallet can be verified on blockchain.com, however, the total account balance is 0.42 BTC ($8,495) – far less than the advertised 50,000 bitcoins. It is unknown whether the amount in it was formed by donations or not, but several transactions from unknown senders can be tracked in the account history.
“Crypto scams that involve images of celebrities or big brands have become all the rage these days. We have witnessed campaigns with Elon Musk, Bill Gates and Pavel Durov,” says Olga Svistunova, security expert at Kaspersky.
“This time the attackers took it a step further, launching fraudulent activity in the name of Nvidia’s CEO and tying it to a very special occasion for the company,” she says.
“Our main advice is to carefully check all the links you follow when surfing the net and to avoid donating to unreliable initiatives.”
To avoid scams, save money and keep personal data private, Kaspersky experts share the following simple tips:
- Check all links before clicking. Hover over them to preview the URL and check for misspellings or any other irregularities.
- Sometimes the fake websites look like the real ones. It depends on how the criminals have done their homework. Hyperlinks are most likely to be incorrect – often containing misspellings – but these links can also be disguised to appear valid and redirect you to another page, pretending to be the legitimate site.
- To protect your data and finances, it is recommended that you ensure that the payment and online payment page is secure. You’ll know this is the case if the web page URL starts with HTTPS instead of the usual HTTP; a padlock icon will also typically appear next to the URL and address bar, in green on some browsers. If you don’t see these features, don’t continue.
- Use a reliable security solution that can help verify the security of the URL you are visiting and can also provide the ability to open any site in a protected container to prevent theft of sensitive data including details financial.