Cryptocurrency investors have been experiencing the unsettling issue of tokens suddenly vanishing from their wallets, and Bitrace, a blockchain investigator, has identified three effective methods hackers use to steal cryptocurrencies. One of the approaches involves bad actors leveraging search engines like Google and Bing to promote fraudulent crypto apps. These attackers employ search engine optimization techniques to boost their rankings in search results, leading users to download and register fake applications that come with hidden vulnerabilities.
Clipboard hijacking represents another method used to compromise wallets. This technique involves automatically intercepting and modifying text data copied from a user's clipboard. It commonly targets mnemonic phrases stored in the clipboard, which hackers can use to access wallets and drain funds. A specific example cited by Bitrace is the use of a fake Telegram app to alter the wallet address copied to the clipboard, causing users to unknowingly send their coins to the hackers.
The third prevalent tactic to make tokens disappear from wallets is the classic "high yield, low risk" liquidity scam. Bitrace recommends three strategies for tracking stolen funds, including monitoring transaction fees to trace the origin of fees paid to move the stolen assets. Additionally, investors can enhance their chances of recovering their stolen funds by using blockchain explorers and specialized tools designed for this purpose.
Apart from targeting individual investors, cryptocurrency thieves also aim at organizations within the crypto industry. In a recent example, Maestrobots, a group of cryptocurrency bots on the Telegram messaging app, disbursed 610 Ethereum to address a bug. The Ethereum used for this purpose was the bots' own revenue and was intended to cover user losses exceeding $1 million.
CertiK, a blockchain security firm, confirmed its detection of these transactions showing Maestro compensating users with 334 ETH. The majority of these coins were anticipated to be bought back on the market, and most of the affected coins continue to function. The users were able to recover their losses due to this compensation initiative.
If you'd like to learn more about tracking stolen cryptocurrency and how blockchain analysis can assist in fund recovery.
