Hacking Group ‘Crazy Evil’ Creates Fake Web3 Company to Target Crypto Job Seekers with Wallet-Draining Malware

Russian Hacking Group Creates Fake Web3 Company to Target Crypto Job Seekers with Wallet-Draining Malware

  • Russian Hacking group Crazy Evil created fake Web3 company “ChainSeeker.io” to distribute wallet-draining Malware through fabricated job listings.
  • The group advertised blockchain jobs on platforms like LinkedIn and deployed a malicious “GrassCall” video conferencing tool that installed information-stealing software.
  • Crazy Evil has reportedly generated over $5 million through at least ten social engineering campaigns targeting cryptocurrency professionals.

Cryptocurrency job seekers have been targeted by sophisticated malware attacks disguised as employment opportunities from a fictitious blockchain company. A Russian-speaking hacking collective known as Crazy Evil orchestrated the campaign, creating a false Web3 company called "ChainSeeker.io" to distribute wallet-draining malware to unsuspecting applicants in the cryptocurrency industry.

- Advertisement -

According to Cybersecurity website Bleeping Computer, the Hackers established professional-looking profiles on LinkedIn and X, where they advertised standard industry positions such as "Blockchain Analyst" and "Social Media Manager." To increase visibility, the group purchased premium advertisements across multiple platforms including LinkedIn, WellFound, and CryptoJobsList.

The operation followed a calculated pattern. After submitting applications, candidates received messages from a purported "chief human resources officer" who directed them to contact the company’s "chief marketing officer" via Telegram. The fake CMO would then instruct applicants to download a virtual meeting application called GrassCall and enter a provided code.

Once installed, GrassCall deployed various information-stealing malware and remote access trojans (RATs) designed to locate and extract crypto wallets, passwords, Apple Keychain data, and authentication cookies stored in web browsers.

Victims of the scam have reported how convincing the operation appeared. "It looked legit from almost all angles," stated Cristian Ghita, a freelance UX developer claiming to have fallen victim to the scheme, in a LinkedIn post. He added: "Even the video-conferencing tool had an almost believable online presence."

Affected individuals have formed a support group on Telegram to assist fellow victims.

The campaign is no longer active as of this reporting, with most advertisements having been removed from social media platforms, according to Bleeping Computer.

- Advertisement -

This isn’t the first time Crazy Evil has targeted the cryptocurrency sector. A report published last year by Recorded Future identified at least ten separate social engineering campaigns conducted by the group, many specifically targeting professionals in the decentralized finance (DeFi) industry. The research estimates the group’s total earnings at over $5 million since it began recruiting on Russian-language forums in 2021.

Similar attacks have become increasingly common in the crypto space. Last year, hackers employed fake Zoom links to distribute cryptocurrency-stealing malware using tactics resembling those in Crazy Evil’s latest campaign. In January, research firm SentinelLabs revealed that the North Korea-linked group BlueNoroff was using email updates on DeFi trends and Bitcoin prices to trick users into downloading malicious software disguised as PDF reports.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -

Latest

Bitcoin Drops 10% From Highs Amid Quantum Computing Warnings

Bitcoin dropped nearly 10% from its record high, falling close to $103,000 after reaching $112,000 last week. BlackRock warned that advances in quantum computing could...

Czech Justice Minister Resigns Over $45M Bitcoin Donation Scandal

Czech Justice Minister Pavel Blazek resigned after controversy over accepting and selling Bitcoin from a convicted criminal.The Justice Ministry auctioned nearly 500 Bitcoin, raising...

Uniswap (UNI) Rebounds Above $6 After Brief Uptrend Breakdown

Uniswap's UNI token dropped below its key uptrend line following a failed hold above the $6.00 support level.High trading volumes accompanied the decline, including...

Michael Saylor Invites Joe Rogan to Discuss Bitcoin on Podcast

Michael Saylor has shown interest in discussing Bitcoin on The Joe Rogan Experience podcast.The idea has generated excitement in the Bitcoin community, with some...

Congress Debates Stablecoin Bill Amid Rising Bank and Crypto Tensions

U.S. lawmakers are moving forward with the Senate Guiding and Establishing National Innovation for U.S. Stablecoins (GENIUS) Act, with debates set to resume after...

Must Read

How Much Money Do You Need To Start In Crypto?

TL;DR -If you are wondering How Much Money Do You Need To Start In Crypto, note that is less than you are probably thinking....