BITCOIN ERA

DESCRIPTION OF EVENTS

"Become a part of the Bitcoin Era and Start trading Cryptocurrency like a Pro"

"Our Bitcoin Era platform is able to provide regular people with the best of the best trading tools. Our reputable partners are Crypto trading enthousiasts that can offer various methods to trade Cryptocurrencies like Bitcoin, Ethereum, Cardano, Tether, XRP and sometimes many more. On top of that they are licensed by an official regulator to make sure your investment is completely safe."

"Our Bitcoin Era app is simply a secure gateway that helps people enter the world of trading, and in particular Bitcoin trading. But that's not all. As most of our partners offer trading tools that give you the possibility to trade Cryptocurrencies without the use of a wallet or other technical storage devices. On top of that they offer systems like stop-loss, indicators, automation tools, robots and other technical highlights to help you overcome the volatility in the markets."

"Some cybercriminals have been counterfeiting the BTC ERA trading platform in order to infect potential users with malware. The cybersecurity company discovered that the perpetrators had been sending emails allegedly from BTC ERA to induce users to invest and pay."

"The attack impersonates an automated email from BTC Era, a platform for trading cryptocurrency. However, the email is actually sent from aurinekevinlola@gmail.com. The sender addresses the recipient by name, and the email states that the recipient has been approved to make a BTC transaction, which requires a minimum deposit of $250 to start. Following this is a concealed URL with text that reads “create an account”."

"Clicking on the “create an account” link leads to multiple redirects, before landing on “theverifycheck.com” webpage. Upon arriving at this landing page, a pop-up alert requests permission to show notifications from the website. After clicking “Allow” the landing page remains static."

"By clicking “Allow”, the user has actually given permission for Adware to run on their device. It only appears that nothing has happened. Going into chrome settings, the user would be able to see that the website is running Malwarebytes, thus rendering their devices as tools to monitor user behavior, as well as launch ads and spam targeting the user."

Ken Liao, vice-president of cybersecurity strategy at Abnormal Security, commented: “We have seen that over the last few months the weekly volume of attacks impersonating Bitcoin platforms has remained relatively constant. We saw an increased rate of these impersonations between the end of March through the beginning of May, though.”

He added: “We would advise organizations and their employees to double check the senders and addresses for messages to ensure that they’re coming from legitimate sources. Don’t just trust the display name. In addition, we would advise everyone to always double check the webpage’s URL before signing in.

“Attackers will often hide malicious links in redirects or host them on separate websites that can be reached by safe links. This allows them to bypass link scanning within emails by traditional email security solutions. If the URL looks suspicious, don’t enter your credentials and always verify with your company’s IT department."

Bitcoin Era is a trading tool which purports to allow for profitable cryptocurrency trading. As if the service weren't suspicious enough by claiming 99% success in transactions and marketing itself using celebrities, there were reports of phishing emails claiming to be from Bitcoin Era but actually from a separate scammer. Once the user visits the site, they are prompted to give approval to malicious adware.

SlowMist Hacked - SlowMist Zone (Jun 26)
Bitcoin Era App ™ [Official Website] (Dec 11)
BTC Era Impersonated in Malware Attack | Abnormal (Dec 11)
https://www.infosecurity-magazine.com/news/malicious-actors-bitcoin-launch/ (Dec 11)
THIS IS A SCAM. #BITCOIN-ERA #BITCOIN-PROFIT - YouTube (Dec 11)

More case studies

CoinBerry ETransfer
Glitch Fraud

Coinbase Sim
Swapping Lawsuit