Scammers Unleash Flood of Slick Online Gaming Sites
1 min read
Summary
KrebsOnSecurity has conducted a recent investigation into online gaming and betting websites that are using social media, including Discord, to advertise and attract new users.
The report shows these websites initially offer free credits to play and then require a verification deposit of around $100 in cryptocurrency before users can withdraw any claimed winnings.
However, the sites never release the funds and requests to contact ‘Live Support’ are met with a combination of AI and human operators who eventually block the user.
A search on the threat hunting platform Silent Push revealed more than 1,200 recently registered and active domains with gaming and wagering names, all of which share the same chatbot API key.
These domains all use the same wallet, track IP addresses and passwords, and have a strict policy against giving out wallet addresses.
Researchers have suggested these sites are a large-scale criminal enterprise using a standardised playbook and technical traits.