Service receive & sending SMS

Beware, a fake Pokemon NFT game can hijack your PC

612   |     /   Security

Beware, a fake Pokemon NFT game can hijack your PC
Fake Pokemon NFT game actually distributes a RAT

Hackers are utilising the continued popularity of the Pokemon universe and the bizarre rise of non-fungible tokens (NFT) to trick people into installing remote access tools (RAT), take over their devices, and steal any valuables they might find.


Be careful on suspicious websites and as a safety measure, don't leave your personal phone number on them. Use virtual numbers to receive SMS online.


Cybersecurity researchers from ASEC recently discovered at least two malicious websites - beta-pokemoncards[.]io, and pokemon-go[.]io pretending to host a Pokemon game that also offers NFT cards that can be traded, eventually for profit. 


The websites have since been taken down, but while they were active they had a download button called “Play on PC” that distributed NetSupport.


Distributing NetSupport

In theory, NetSupport is legitimate software. It’s built on Windows, and allows cross-platform remote access, giving IT administrators and technicians a way to remotely access various endpoints and fix any potential problems. The program supports Windows, Windows Mobile, Mac, Linux, and Solaris. 


In practice, NetSupport is being used by threat actors to gain unauthorized access to target systems. The first signs of activity on this campaign were in December last year. Earlier samples from VirusTotal, the publication also found, showed the same operators pushing a fake Visual Studio file instead of the Pokemon game. 


The identity of the threat actor behind the campaign remains unknown.


Non-fungible tokens are part of a wider cryptocurrency market and as such are a major target for fraudsters and hackers. Recent research has shown that the Web3 industry (decentralized internet based on the blockchain, the same tech that powers NFTs) lost almost $4 billion last year to fraud and cybercrime.


As more organizations started building new systems, fraudsters were quick to come out of the woodwork, and now Web3 bug bounty provider Immunefi has claimed exactly $3,948,856,037 worth of cryptocurrencies was lost in the Web3 ecosystem in 2022, to fraud, hacks, and scams. The silver lining, the researchers are saying, is the fact that the overall losses dropped by more than half (51.2%) year-on-year. In 2021, the industry had lost $8,088,338,239.


The constant battle against fraudsters isn’t slowing the industry’s growth, though. Immunefi expects it to grow from $3.2 billion last year, to $81.5 billion in the next seven years, increasing 43.7% CAGR.

Similar news

NFTs could give Bitcoin a face-lift

NFTs could give Bitcoin a face-lift as it increases its blockchain demand. Welcome back to Chain Reaction.

How to use passkeys in macOS Ventura and iOS 16

Sign in without ever needing a password again

Apple says these are the best security keys around now

Whatever security key you choose, it must be FIDO certified, Apple says


This is not only a service for receiving and sending SMS messages to virtual numbers, but also a tutorial on user safety in the modern world, the latest developments in IT, social media security, fresh programs and lessons that simplify our lives. So are other issues encountered by the average user. In simple words, each user will find for themselves something interesting or answers to their questions.

SIMonline © 2018 - 2024

All rights reserved