BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

AI-driven Nomani scam surges 62% spreads across social media

Nomani investment scam surges 62% in 2025 — 64,000+ URLs blocked as AI-powered malvertising and deepfake ads spread; H2 detections fall 37%

  • Nomani investment scam activity rose 62% in 2025, with over 64,000 blocked URLs tied to the threat.
  • Attackers widened platforms beyond Facebook to include YouTube and used AI-generated videos and social media ads to lure victims.
  • Scammers request extra fees or sensitive documents when victims try to withdraw funds and reuse Europol/INTERPOL lures to steal more money.
  • ESET reports H2 2025 detections fell 37% from H1, amid increased law-enforcement pressure.
  • Separate reporting links some scam ad traffic to programs that contributed to a large share of Meta’s China ad sales and global ad revenue.

ESET researchers documented that the fraudulent investment scheme Nomani grew by 62% in 2025 and that they blocked over 64,000 unique URLs tied to the campaign, with most detections in Czechia, Japan, Slovakia, Spain, and Poland, according to ESET.

- Advertisement -

The scam, first recorded in December 2024, used social-media malvertising (malicious advertising), company-branded posts, and AI-powered video testimonials. Victims who request payouts are asked for additional fees or to provide ID and credit card details, which leads to financial loss.

Fraudsters also post offers claiming help from law-enforcement bodies to recover funds, citing Europol and INTERPOL, then demand more payments. Attackers improved their AI-generated videos—higher resolution, more natural motion, and better audio/video sync—to reduce detection. “Deepfakes of popular personalities, used as initial hooks for phishing forms or websites, now use higher resolution, have significantly reduced unnatural movements and breathing, and have also improved their A/V sync.”

To avoid platform controls, campaigns run for only a few hours and redirect non-targeted users to benign cloaking pages (pages that hide the true destination). Attackers increasingly use built-in ad tools like forms and surveys instead of external sites to harvest data. ESET observed phishing templates with comments suggesting AI-generated HTML and noted related GitHub repositories from Russian and Ukrainian users.

Although overall detections rose year over year, “On the bright side, although overall detections are up compared to 2024, there’s a hint of improvement, as H2 2025 detections have declined by 37% compared to H1 2025,” ESET stated.

- Advertisement -

Reporting also linked scam ad traffic to programs that represented a significant share of Meta’s China ad sales and global ad revenue, as detailed in a new investigation and a related report on agencies that ran banned advertisements.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Saylor’s ‘Orange Dots’ Signal Fails to Clarify Bitcoin Strategy

Strategy founder Michael Saylor posted a cryptic signal on Sunday, prompting analysts to call...

Crypto’s $2T Crash Awaits BlackRock Shock & FOMO

Bitcoin has stabilized near $60,000 after a downturn erased $2 trillion from the crypto...

Cambridge: Ethereum Energy Intensity Low, Overall Use High

Ethereum consumes roughly 7.87 GWh annually, the second-lowest energy intensity per market value among...

Saylor and Back oppose BIP-110 fork over Bitcoin security fears

Michael Saylor and Adam Back have publicly opposed BIP-110, a temporary Bitcoin fork proposal...

China, India groups target Pakistani police in cyber espionage

Suspected China- and India-aligned threat actors targeted Pakistani law enforcement in a sustained cyber...

Must Read

How To Travel With Bitcoin: 9 Travel Companies Accepting Bitcoin

Bitcoin travel is a reality, as several travel companies now accept payments in cryptocurrencies for their services.Those who have opened a Bitcoin account on...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading