A cybersecurity company called Security Alliance (SEAL) has issued a warning about hackers using fake video calls on platforms like Zoom and Microsoft Teams to attack people. These hackers, linked to North Korea, trick victims and secretly steal their important information.
How the Fake Video Call Scam Works
This scam often starts with a message from someone you know on the messaging app Telegram. But in reality, this person’s account has already been hacked. Because the hacker uses an account you trust, you don’t suspect anything wrong. The message invites you to join a video call through a link.
Once the call starts, you see what appears to be real people on the screen. These videos are not live; they are recordings stolen from previous hacks or public videos. The hackers pretend there is a technical problem during the call. Then, they ask you to download an update for your device to fix the problem.
When you download the file, thinking it is safe, it actually installs malware. Malware is harmful software that allows the hacker to steal your passwords, private keys, cryptocurrency wallets, cloud account details, and even take over your Telegram account. Victims often lose their cryptocurrency and other valuable assets. Over $300 million has already been stolen using this method.
What Happens After the Hack
Once your device and accounts are compromised, the hackers move to the next target. They use your hacked Telegram account to send messages to your friends and contacts, repeating the same scam. This creates a chain reaction affecting more and more people.
How to Stay Safe
Cybersecurity expert Taylor Monahan advises everyone to follow these steps if you accidentally download a suspicious file:
- Immediately disconnect the device from the internet.
- Turn off the compromised device and avoid using it further.
- Use a different device to secure your funds and accounts by changing passwords and login details.
- Completely wipe and reset the hacked device before using it again.
To make your accounts safer, particularly on Telegram, you should:
- Log out of all devices from within the app.
- Update your Telegram password.
- Enable multi-factor authentication (a method requiring extra security steps beyond just entering a password).
Scams Growing More Advanced
These types of scams are becoming more common. A hacker group called the Lazarus Group often uses similar tricks. In the last year, there have been many reports of scammers using fake Zoom call links to steal money from people who use cryptocurrency platforms.
For example, the founder of cryptocurrency exchange Binance, Changpeng Zhao (also known as CZ), warned about scammers using advanced tricks like deepfake videos. Deepfakes are fake but realistic-looking videos created by artificial intelligence. One well-known victim was a cryptocurrency influencer named Mai Fujimoto. Hackers used a deepfake video of her and a fake Zoom link to trick her. They stole access to her Telegram, MetaMask, and social media accounts.
Another warning came from Microsoft Teams user Gracy Chen, the CEO of Bitget. She revealed that hackers are sending fake meeting links on apps like Zoom and Teams to target cryptocurrency traders. Again, during the fake meeting, hackers ask victims to download a program that is actually malware disguised as a technical update.
These scams are designed to be very realistic, which makes them dangerous. They often copy the style and methods of known hacker groups like the Lazarus Group. Some scammers even pretend to be official representatives of trusted companies.
Final Thoughts
To protect yourself, always be cautious when you receive unexpected video call invitations or links. Verify directly with the person or company if the invitation is real. Avoid clicking on unknown links or installing files sent to you without proper verification.
For more information about the technologies and terms mentioned, you can explore these resources: Cybersecurity, Zoom, Microsoft Teams, and Malware.