Displaying items by tag: Scam

SICP experts have identified another scammer using social media to cheat. Katrina Lucas from Los Angeles adds potential victims as friends on Facebook and starts a dialogue with them about cryptocurrencies and investments. She offers them up to 50% profit in the first week by investing her bitcoins in her services. The scammer mentions the cloud mining service Coincloudhashing, but this site is not available in the .com zone.

So, one of the scammer's wallets received 4 transactions worth 0.027 BTC. Subsequently, the funds were transferred to the consolidating wallet of the illegal service (in transit, with division into parts).

Associated with the profile is a bitcoin investment company page that leads to an inaccessible site in the domain zone in Nigeria (bitcoincom). From the information it follows that the illegal investment service allegedly charges $ 50,000 for 1 bitcoin. Here are trader Jennifer Smith's contacts and reviews of active users.

One of the wallets of the illegal service received 410 transactions in the amount of 5,669,312 BTC (over a period of about 3 months). It is linked to several other major wallets in the group in question.

The second scammer's wallet was launched a few days ago. Funds are withdrawn directly to the Huobi Global crypto exchange wallet. The wallet of the exchange user took 5 transactions for 0.034 BTC, which so far contain about 100 BTC. In total, the wallet received 14 785 129 BTC.

Katrina's Facebook page is currently unavailable, and messages from the correspondence have been deleted by the scammer (please take screenshots in advance). There are no active sites on the network.

Look before you jump!

Service: sicp.ueba.su

Published in INVESTIGATIONS
Friday, 27 November 2020 18:18

FRAUDERS USE NAME OF BIG PLAYERS

On November 2, 2020, the Polymetal international investment phishing site was launched. Its contents have been copied almost entirely from the original Polymetal International website. Most of the pages were copied and modified for the needs of the attackers. However, the link in the clone logo leads to the original site.

The home page of the fake site contains information about investment packages (5 types), with a profit of 5 to 50 percent in 8 days. The same information is available in the investor's personal account after registration. Investments can only be made in bitcoins.

 

In less than a month, the scammers sold 34 packages worth about 0.19 BTC. The criminals' consolidating crypto wallet received 250 transactions at 53.44 BTC. Most of the funds are withdrawn on the Hong Kong crypto exchange Binance.

It is noteworthy that on the same hosting in Phoenix (California, USA) there is another project of Lugwise Asset Management (Lugwiseinvest). The project was launched on October 5 and is positioned as a London-based asset management firm. Although the legal address on the site is listed in San Francisco (California, USA).

Judging by the activity and the amount of funds on the associated purses of the scammers, this is not a complete list of their illegal services and projects.

If you or your loved ones have suffered at the hands of fraudsters, please send notifications to the service mailbox of the CryptoCERT service (This email address is being protected from spambots. You need JavaScript enabled to view it.).

Original: Polymetal International

Scam: Polymetal International Investment

Published in INVESTIGATIONS

Fraudsters are trying to make money amid the coronavirus pandemic and the fight against it. In particular, at the beginning of this week the number of spam mails allegedly on behalf of the World Health Organization (WHO) has increased. The letters speak of fundraising for COVID-19 Funds worldwide.

Specialists of the portal SICP.ueba.su analyzed one of these letters, which was sent from This email address is being protected from spambots. You need JavaScript enabled to view it.. It turned out that the second-level domain is actually used by WHO, but it was this letter that was sent from a mail server located in the state of Colorado in the United States of America and in transit passed through a reference mailer in the German municipality of Mauern.

Experts also learned that a link to a picture with a QR code (the address of a bitcoin wallet for donations) leads the reader directly to the portal of the investment company Five Stand Capital, located in the US city of Atlanta from Georgia. As follows from the official information on the company's website, it is a partner of large US investment funds in the United States. The portal itself is hosted by GoDaddy in Oregon (Portland). Still there are three site mirrors - for various domain zones.

This email was first sent from the SendGrid.net mail server, which is also located on GoDaddy’s resources in Colorado, Denver. And, judging by the information bases, another 13 resources are located on this IP address, nevertheless, only one of them is displayed - a web-based mail gateway.

It is important to consider that on the official website of the WHO there is no way to donate funds in the form of cryptocurrency - bitcoin. The same is true of their dedicated donation collection site. And there is even a warning that they do not send any letters.

Apparently, fraudsters are trying to cunningly take advantage of the global crisis situation, possessing a good knowledge of modern technology. Or maybe the owners of WHO decided to use all available tools to raise funds. And experts are wondering, where is the hosting site for WHO?

Interestingly, so far, no funds have been received to the cryptocurrency wallet, which is indicated in the letter of the scammers. The wallet is constantly monitored by SICP platform experts, however, like other malicious purses known to them.

Source: CryptoRussia.ru

Published in MEDIA ABOUT US

PlusToken could be the largest scam in the history of financial pyramids. This project has already raised almost $ 3 billion in cryptocurrencies.

At the end of June of this year, six PlusToken project fraud suspects were arrested in China, while another part of the executives is still at large.

According to Elementus researchers, PlusToken collected 10 million ETH from over 800 thousand contributors. In addition to ETH, funds were invested in the project in other digital assets - in bitcoins, XRP and EOS. The total amount of funds raised is impressive - almost $ 3 billion in terms of the exchange rate. Investors live in almost all Asian countries, as well as in Russia, Ukraine, Germany and Canada.

According to preliminary estimates of other researchers, the PlusToken pyramid attracted about 200 thousand bitcoins, 789 thousand ETH and 26 million EOS. All of these funds went to wallets controlled by the PlusToken team. It was possible to track the funds of defrauded investors thanks to the cryptocurrency transaction analysis service created in the Special elaborations department of the Technopark of St. Petersburg. It is known that some of the bitcoins were already cashed by criminals through the Huobi Global and Bittrex crypto exchanges, while the other part settled on one of the crypto wallets.

In particular, PlusToken organizers transferred almost half of the funds raised to the Singapore Huobi crypto exchange - at least 4.3 million ETH of the total ETH.

The PlusToken project was launched in 2018 as an international cryptocurrency project and a decentralized solution (crypto wallet), supported by a team from South Korea. Project promotion was supposed mainly in Asian countries - China, Japan, Myanmar, Vietnam, as well as in Russia and Europe. The project immediately had obvious signs of a financial pyramid - a referral system was offered to investors and a monthly profit of 6% to 19% was promised. According to experts, the PlusToken fraudulent scheme is organized on the principle of the already closed BitConnect platform - with tokens and dividends. The capitalization of BitConnect tokens at the top of trading was a little over $ 121 million, and the capitalization of PlusToken was already $ 17 billion.

Although the PlusToken pyramid has ceased to exist, "a holy place does not exist empty." Similar projects Cloud Token and VDS (Vollar) appear on the market with a market capitalization of $ 1 billion and are already becoming popular, including among Russian-speaking users.

Earlier we reported what a financial pyramid is. Often, pyramids are often understood as MLM - a method of marketing promotion and sales that has been used for many years. Nevertheless, there are different nuances. A synonym for the “evil” pyramid is a scheme named after Ponzi, an Italian-American scammer who created a scam, massively promising investors profit from the contributions of new participants, forming a pyramid until the collapse that inevitably occurs, according to the nature of speculation and any financial bubbles. In our country, Mavrodi distinguished himself with such a fraud with the MMM pyramid. The concept of a financial pyramid is fixed at the legislative level and you can pay for it, including imprisonment for up to six years. So far, the practice of applying this criminal article is not very common.

The Central Bank of Russia gives several main signs of the financial pyramid in its recommendations: paying money to participants from funds contributed by other participants, lack of licenses for this type of activity, promise of high profitability, lack of information about the financial position of the organization, lack of own fixed assets or assets, lack of certain type of activity of the company.

Source: CryptoRussia.ru

Published in LIVE

О КОСАтка

Корпоративная система аналитики Транзакция Криптовалюта Актив - кибербезопасность инфраструктуры блокчейнов и антифрод в криптовалютной сфере (антискам, прозрачность, комплаенс).

Связаться

Российская Федерация, Москва

Тел.: +7 (911) 999 9868

Факс: 

Почта: cosatca@ueba.su

Сайт: www.ueba.su

Наше сообщество

Зарегистрируйтесь, чтобы получать по почте самую свежую информацию
© 2023 КОСАтка. Все права защищены.                                                                                                                        Грант BTC 1CdD6Xk9RDZ9wyeRqq1uXkktgdaPpGpt8f

Search