PeckShieldAlert’s recent revelation has unveiled a significant scam targeting Friendtech users, resulting in the loss of approximately $214K worth of cryptocurrencies across various chains, including Ethereum and BNBChain. The fraudulent Friendtech X account, ‘frentechpro,’ has been identified as the central perpetrator in this widespread crypto heist, sounding alarm bells within the cryptocurrency community.

#PeckShieldAlert #Phishing Be cautious @frentechpro is a forged #friendtech X (formerly Twitter) account. The scammer has stolen ~$214K worth of cryptos on 7 Chains (#Ethereum, #BNBChain, #Base, #Polygon, #Arbitrum, #Optimism, #Avalanche)Fake_Phishing187019 related to the… https://t.co/xqB61IA9eO pic.twitter.com/acjj1HPcKI

— PeckShieldAlert (@PeckShieldAlert) October 16, 2023

The repercussions of this ruse have been severe, with the scammer reportedly making off with a staggering $214,000 worth of cryptocurrencies across seven prominent chains, including Ethereum, BNBChain, Base, Polygon, Arbitrum, Optimism, and Avalanche. This incident sheds light on the persistent threats faced by users engaging with digital assets and the inherent vulnerabilities in the crypto landscape.

Hackers taking advantage of Frientech’s situation

With a sinister connection to the InfernoDrainer, this fraudulent activity marks a distressing escalation in the ongoing battle against cybercrime. The insidious nature of these attacks is further emphasized by recent reports detailing the use of malicious JavaScript scripts to compromise user data and assets, primarily through vulnerabilities within the Friendtech platform.

The malevolent JavaScript scripts, cleverly embedded within deceptive bookmarks, have become a potent tool for fraudsters to orchestrate stealthy assaults on unsuspecting victims. These maneuvers extend beyond the theft of passwords, with potential compromises to Friendtech’s two-factor authentication (2FA) credentials, amplifying the severity of the threat.

最近出现针对 https://t.co/xvDZPEKscJ(ft) 的盗号恶意代码,一段 JavaScript 脚本,诈骗者会诱骗目标用户添加其为书签。当用户在 ft 页面时,一旦执行书签,恶意代码会诱骗盗取用户的密码(即 ft 的 2FA,图一),并盗走 ft 及其使用的嵌入式钱包 Privy 有关的 token(图二)。这就意味着用户的… pic.twitter.com/jKtkBHUDHX

— Cos(余弦) (@evilcos) October 14, 2023

Of equal concern is the vulnerability of Friendtech’s inbuilt wallet, Privy, which faces imminent peril from the insidious scripts seeking to corrupt tokens and exploit user accounts for financial gain. While the recent surge in Friendtech’s DeFi sector heralded record sales and substantial growth, these achievements have been overshadowed by the dark cloud of security breaches and compromised user data.

To counter these pernicious threats, users must exercise vigilance by meticulously inspecting bookmarks and add-ons, ensuring the legitimacy of these resources before engaging further. Moreover, heightened user awareness must be complemented by robust cybersecurity protocols at the platform level, to fortify Friendtech’s defenses against such insidious incursions.