A sophisticated deepfake scam targeted an OKX user after their personal information was compromised in a Telegram data breach. The victim reported on June 3 that the attack had resulted in the theft of millions worth of crypto assets.
OKX User Claims Hacker Accessed Personal Information Via Telegram
According to local media outlet WuBlockchain, Lai Japanese Fang Chang detailed that the scammers purchased his personal information from a Telegram breach to access his email through the “forgotten password” feature.
Posing as Chang, the scammers used a deepfake video to change his security settings, including his email ID and Google authenticator settings. Within 24 hours, Chang’s OKX account lost over $2 million in crypto assets.
OKX confirmed the incident and promised to help the victim recover the asset by collaborating with law enforcement.
Deepfake AI scams indicate the growing threat of AI in the crypto sector.
Deepfake technology, which can mimic a person’s voice, face, and gestures, has been increasingly used in cyber attacks. According to several reports, these AI-generated deepfakes can deliver disinformation and fraudulent messages, making them difficult to detect and stop.
This recent OKX user’s account breach is part of a broader trend of AI-related fraud.
On February 6, 2024, a report by Fortune highlighted the emergence of OnlyFake, a site capable of producing highly realistic fake IDs that can deceive know-your-customer (KYC) processes at crypto exchanges like OKX. The report details the statement of the website owner, which entails that the generated forgeries could deceive even popular payment platforms like PayPal and other platforms that require users to upload an ID to sign up.
These developments indicate the new wave of AI-driven scams, which call for serious concern in the crypto industry.
OKX User Reports Security Challenges
OKX exchange continues to struggle with reputation recovery and security challenges as more users report security incidents on the platform.
Amidst the latest deepfake AI scam, an X user recalled an earlier attack on an OKX wallet, where the victim lost 50,000 TRC-20 USDT.
According to the detailed post, the scammers exploited a page hijacking technique to replace the OKX wallet’s “replenish GAS” function with “update Tron account owner permissions.”
This allowed the hacker to obtain authorization to control the victim’s Tron account and steal coins.
In a separate event on March 27, OKX API failure caused account balance confusion. Some user’s account balances showed zero, while others displayed balance amounts in the tens of millions of dollars. Many traders in Singapore, the United States, and Japan were left with incorrect account balances.
These incidents were preceded by the OKX DEX exploit that resulted in some wallets authorized to the platform losing about $400,000. It was revealed that the OKX DEX proxy admin owner’s private key was allegedly leaked, allowing hackers to take over the protocol and change its functionality.
Credit: cryptonews
