{"id":46997,"date":"2025-09-13T07:05:28","date_gmt":"2025-09-13T07:05:28","guid":{"rendered":"https:\/\/www.bitrabo.com\/discover\/?p=46997"},"modified":"2025-09-13T07:05:28","modified_gmt":"2025-09-13T07:05:28","slug":"thorchain-founder-duped-out-of-1-35m-in-deepfake-scam","status":"publish","type":"post","link":"https:\/\/www.bitrabo.com\/discover\/thorchain-founder-duped-out-of-1-35m-in-deepfake-scam\/","title":{"rendered":"THORChain Founder Duped Out of $1.35M in Deepfake Scam"},"content":{"rendered":"\n

In a shocking incident, a crypto industry veteran<\/strong> lost approximately $1.35 million from a previously overlooked MetaMask wallet. This breach was orchestrated through a compromised Telegram account and a deceptive Zoom meeting that allowed attackers to gain access to sensitive data.<\/p>\n

<\/span>Understanding the THORChain Incident<\/span><\/h2>\n

Initial reports indicate that the scam kicked off when an associate’s Telegram account was hacked. The attackers sent out a malicious link disguised as a genuine video call invitation. The victim, believing it to be authentic, joined the meeting, unknowingly exposing himself to a fraudulent interface.<\/p>\n

Once inside, the perpetrators leveraged access to private keys stored in the victim\u2019s iCloud Keychain, eventually draining the wallet of its entire balance, which amounted to a staggering $1.35 million in various cryptocurrencies.<\/p>\n

\n

This incident totaling $1.35M serves as a crucial reminder: relying on software wallets leaves you just one malicious execution away from losing it all. Exercise caution!<\/strong><\/p>\n

Even without approving a malicious transaction, the malware simply lifted the…<\/p>\n

\u2014 CyberSecurity Expert (@InfoSecGuru) September 12, 2025<\/a><\/p>\n<\/blockquote>\n

<\/span>Insights from Investigators<\/span><\/h2>\n

Blockchain forensic teams quickly mobilized, analyzing the on-chain movement of the stolen assets. Early estimates placed the stolen value at around $1.2 million; however, subsequent analyses updated the figure to nearly $1.35 million.<\/p>\n

Experts made connections to potential North Korean<\/strong> groups based on system patterns, highlighting the complexity of attributing such actions in the crypto world.<\/p>\n

\n

#CyberAlert<\/a> A THORChain user’s wallet was breached, leading to losses exceeding $1.2M pic.twitter.com\/R385BRHoHu<\/a><\/p>\n

\u2014 CryptoWatch (@CryptoWatch) September 12, 2025<\/a><\/p>\n<\/blockquote>\n

<\/span>A Cautionary Tale for the Community<\/span><\/h2>\n

Leaders within the crypto security community<\/strong> issued warnings about the dangers associated with remote meeting links and sudden data requests. A veteran wallet developer stressed that keeping private keys in software that syncs to cloud services exposes users to significant risks, particularly when those services are compromised.<\/p>\n

This caution resonated within developer forums, emphasizing the need for heightened vigilance after such significant losses.<\/p>\n

<\/p>\n

<\/span>Community Initiatives for Recovery<\/span><\/h2>\n

In response to the theft, a related project announced a bounty aiming to facilitate the recovery of the stolen funds. Meanwhile, community members actively tracked the flow of stolen assets, a common strategy employed during high-profile breaches. On-chain tracing<\/strong> often helps pinpoint the locations where funds have moved.<\/p>\n

Encounters like these have led to widespread appeals and rewards being offered as communities mobilize to combat crypto theft.<\/p>\n

<\/span>Emerging Trends in Scamming Techniques<\/span><\/h2>\n

This incident highlights an alarming trend involving deepfakes<\/strong> and fake video calls. Cybercriminals are becoming increasingly sophisticated, combining social engineering with artificial intelligence to enhance their scams\u2019 credibility.<\/p>\n

Notable cases have previously resulted in losses of millions, illustrating the severe implications such scams can have on both individuals and organizations.<\/p>\n

As the landscape of cyber threats continues to evolve, staying informed and adopting heightened security protocols has never been more crucial.<\/p>\n

Image source: Cybersecurity News<\/em>, data from TradingView<\/em><\/p>\n