Scammers use former trading platform data to steal money from former users.
Adversaries are leveraging stolen data in a cryptocurrency heist scam which uses vishing and spear phishing tactics.
Monitored by Cisco Talos since January 2024, scammers have been impersonating investigation officers of CySEC (Cyprus Securities and Exchange Commission) where the attacker uses a lure of refunding a fake seized amount from a fraudulent trading activity in Opteck trading platform to compromise the victims. Opteck’s license was suspended in 2019 due to non-compliance.
Talos researchers said the scammer attempts to contact a potential victim who is, or was once, a user of the Opteck trading platform. Once their use of Opteck is confirmed, they manipulate victims into sharing sensitive information and transferring cryptocurrency.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
