- Nomani investment scam activity rose 62% in 2025, with over 64,000 blocked URLs tied to the threat.
- Attackers widened platforms beyond Facebook to include YouTube and used AI-generated videos and social media ads to lure victims.
- Scammers request extra fees or sensitive documents when victims try to withdraw funds and reuse Europol/INTERPOL lures to steal more money.
- ESET reports H2 2025 detections fell 37% from H1, amid increased law-enforcement pressure.
- Separate reporting links some scam ad traffic to programs that contributed to a large share of Meta’s China ad sales and global ad revenue.
ESET researchers documented that the fraudulent investment scheme Nomani grew by 62% in 2025 and that they blocked over 64,000 unique URLs tied to the campaign, with most detections in Czechia, Japan, Slovakia, Spain, and Poland, according to ESET.
The scam, first recorded in December 2024, used social-media malvertising (malicious advertising), company-branded posts, and AI-powered video testimonials. Victims who request payouts are asked for additional fees or to provide ID and credit card details, which leads to financial loss.
Fraudsters also post offers claiming help from law-enforcement bodies to recover funds, citing Europol and INTERPOL, then demand more payments. Attackers improved their AI-generated videos—higher resolution, more natural motion, and better audio/video sync—to reduce detection. “Deepfakes of popular personalities, used as initial hooks for phishing forms or websites, now use higher resolution, have significantly reduced unnatural movements and breathing, and have also improved their A/V sync.”
To avoid platform controls, campaigns run for only a few hours and redirect non-targeted users to benign cloaking pages (pages that hide the true destination). Attackers increasingly use built-in ad tools like forms and surveys instead of external sites to harvest data. ESET observed phishing templates with comments suggesting AI-generated HTML and noted related GitHub repositories from Russian and Ukrainian users.
Although overall detections rose year over year, “On the bright side, although overall detections are up compared to 2024, there’s a hint of improvement, as H2 2025 detections have declined by 37% compared to H1 2025,” ESET stated.
Reporting also linked scam ad traffic to programs that represented a significant share of Meta’s China ad sales and global ad revenue, as detailed in a new investigation and a related report on agencies that ran banned advertisements.
✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.
Previous Articles:
- XRP Falls but Could Rally to $5 After ETF and Bank Adoption.
- Trump Media Moves 2,000 BTC to Custody, Suggests Reshuffle!!
- Shiba Inu Down 70% Since Dec 2024 – Could Rebound 3.6x Soon!
- Schiff: Bitcoin trade is over as capital shifts to gold now!
- BTC near $88K; on-chain activity, inflows at yearly lows now
