Threat Intelligence Report

Fusion Center Report: Uptick in Ethereum and Bitcoin Phishing Domains (English)

EclecticIQ analysts identified at least 25 recently registered phishing domains impersonating legitimate Ethereum or Bitcoin exchanges, cryptocurrency airdrop giveaway sites, or cryptocurrency trading sites.

Report from EclecticIQ Fusion Center from Tuesday 10 July 2018.

Key Findings:

Ethereum Scam Database identified that the majority of these domains are fake trading sites or phishing sites used to identify and collect private keys.
The IP address 162.144.145[.]169 hosts 5 of the domains identified in this time period.
Analysts have not been able to determine if this activity is part of a larger campaign at this time.

About EclecticIQ

EclecticIQ develops analyst-centric products that align our clients’ cybersecurity focus with their threat reality. The result is intelligence-led security, improved detection, prevention, and response.

EclecticIQ Fusion Center

EclecticIQ Fusion Center delivers thematic intelligence bundles providing a single curated source of relevant CTI from leading suppliers all in a single contract.

Download Report

About EclecticIQ

EclecticIQ Fusion Center

EclecticIQ Fusion Center delivers thematic intelligence bundles providing a single curated source of relevant CTI from leading suppliers all in a single contract.