This fake crypto exchange has swindled millions from its victims

News
By published

Elaborate crypto scheme targets tech savvy users

Cryptocurrencies
(Image credit: Lordowski / Shutterstock)

A new series of email fraud campaigns have been circulating online that try to tempt potential victims with the promise of a considerable amount of cryptocurrency.

This new Advance Fee Fraud scheme discovered by researchers at Proofpoint, sends low volume email campaigns and employs advanced social engineering in order to swindle victims out of Bitcoin.

The scheme itself provides unsuspecting users with credentials to an alleged Bitcoin investment platform and then lures victims with the promise of being able to withdraw hundreds of thousands of dollars worth of cryptocurrency from an already established account on the platform.

Although similar to other traditional Advance Fee Fraud schemes, these new campaigns are far more sophisticated from a technical standpoint and are fully automated. They also requires substantial victim interaction as a victim would first need to login into the platform and create their own account on it to even begin trying to withdraw any cryptocurrency.

In a new blog post, Proofpoint highlights the fact that the use of cryptocurrency is notable because it provides anonymity for both the attacker and the victim. Potential victims may be lured in by how the money would be acquired anonymously and tax-free since it is in Bitcoin.

Your Bitcoin Details

Proofpoint researchers detected the first of these campaigns back in May using a coins45[.]com landing page while the most recent version began operations in July and directs potential victims to securecoins[.]net.

According to the cybersecurity firm, each of the email campaigns has been sent to anywhere from tens to hundreds of recipients around the globe. However, emails from the same campaign contain the same credentials for all recipients and it appears that multiple people can log in with the same user ID and password if they log in from a different IP address and browser. Once a potential victim changes the password and adds a phone number though, the account becomes unique and victims will not see any traces of other victims' activities.

Users that create an account for the fake cryptocurrency platform will see that there is 28.85 BTC in their bitcoin wallet. To get this money out of their wallet, victims first need to transfer 0.0001 BTC to ensure everything works as intended. After successfully doing this, victims find out that the minimum withdrawal amount is 29.029 BTC and they must add funds in order to be able to take out the full amount. However, even if they do add the necessary funds, they won't be able to withdraw all of their Bitcoin from their account on the platform.

As is the case with other email fraud campaigns, users should remain wary of any emails from unknown senders promising them a monetary incentive. While Proofpoint has identified and brought light to several of these campaigns, the firm's researchers believe that the cybercriminals responsible will continue to evolve their tactics in future campaigns.

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Read more
Smartphone with new logo X twitter app background. Application twitter old blue bird change X black and white new.
Phishing campaign targets prominent X users, accounts at risk
Trump
Hackers are abusing $TRUMP tokens to lure victims in to new phishing scam
Shopping scams
New wave of sextortion scams uses personal details and images to intimidate targets while bypassing traditional security measures
Ethereum
Hackers steal over $1bn in one of the biggest crypto thefts ever
Red padlock open on electric circuits network dark red background
CrowdStrike warns of fake job offer scam that is actually just malware
Representational image of a cybercriminal
Criminals are spreading malware disguised as DeepSeek AI
Latest in Security
China
Notorious Chinese hackers FamousSparrow allegedly target US financial firms
A digital representation of a lock
NYU website defaced as hacker leaks info on a million students
NHS
NHS IT supplier hit with major fine following ransomware attack
Businessman holding a magnifier and searching for a hacker within a business team.
Cloud streaming hoster StreamElements confirms data breach following attack
A digital representation of blockchain.
Malicious npm packages use devious backdoors to target users
Data leak
Top home hardware firm data leak could see millions of customers affected
Latest in News
Three angles of the Apple MacBook Air 15-inch M4 laptop above a desk
Apple MacBook Air 15-inch (M4) review roundup – should you buy Apple's new lightweight laptop?
Witchbrook
Witchbrook, the life-sim I've been waiting years for, finally has a release window and it's sooner than you think
Shigeru Miyamoto presents Nintendo Today app
Nintendo Today smartphone app is out now on iOS and Android devices – and here's what it does
Nintendo Virtual Game Card
Nintendo reveals the new Virtual Game Card feature, an easier way to manage your digital Switch games
Nintendo Switch 2
The Nintendo Switch 2 pre-order date has seemingly been confirmed by Best Buy Canada – here's when you'll be able to order yours
Person printing
Microsoft’s latest Windows 11 update exorcises possessed printers that spewed out pages of random characters
More about security
Businessman holding a magnifier and searching for a hacker within a business team.

Cloud streaming hoster StreamElements confirms data breach following attack
A digital representation of blockchain.

Malicious npm packages use devious backdoors to target users
The cast of Black Mirror season 7

Everything new on Netflix in April 2025 – including Black Mirror season 7 and Love on the Spectrum
See more latest
Most Popular
The cast of Black Mirror season 7
Everything new on Netflix in April 2025 – including Black Mirror season 7 and Love on the Spectrum
Witchbrook
Witchbrook, the life-sim I've been waiting years for, finally has a release window and it's sooner than you think
Businessman holding a magnifier and searching for a hacker within a business team.
Cloud streaming hoster StreamElements confirms data breach following attack
Three angles of the Apple MacBook Air 15-inch M4 laptop above a desk
Apple MacBook Air 15-inch (M4) review roundup – should you buy Apple's new lightweight laptop?
Nintendo Virtual Game Card
Nintendo reveals the new Virtual Game Card feature, an easier way to manage your digital Switch games
Shigeru Miyamoto presents Nintendo Today app
Nintendo Today smartphone app is out now on iOS and Android devices – and here's what it does
A digital representation of blockchain.
Malicious npm packages use devious backdoors to target users
Quordle on a smartphone held in a hand
Quordle hints and answers for Friday, March 28 (game #1159)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Friday, March 28 (game #390)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Friday, March 28 (game #656)