Over $5.9M stolen in Inferno Drainer cryptophishing scam

BleepingComputer reports that more than $5.9 million worth of cryptocurrency has been pilfered by the Inferno Drainer cryptocurrency phishing and scam service from 4,888 victims. Over 689 fraudulent websites have been created by Inferno Drainer to target 229 widely known brands, including MetaMask, OpenSea and LayerZero, since late March, according to Scam Sniffer researchers, who discovered the Inferno Drainer through an ad on Telegram promoting that touted a $103,000 theft done with the cryptophishing service. "By querying the transaction hash obscured in the screenshot, we found this transaction in ScamSniffer's database and associated it with some known malicious addresses in our malicious address database," Scam Sniffer said. Further analysis revealed that Inferno Drainer has begun activity in February before ramping up since the middle of last month. Mainnet was the primary source of the stolen cryptocurrency assets, followed by Arbitrum, Polygon, and BNB, said researchers, who added that stolen proceeds have been distributed by attackers acrosss five cryptocurrency addresses.