With the rise of digital currencies and the popularity of digital wallets, hackers are exploring new and creative ways to access users’ assets. One recent method gaining attention is the use of fake messages attributed to Cloudflare. In this deceptive method, hackers design websites that visually resemble secure Cloudflare pages, prompting users to complete a fake ‘Verify you are human’ CAPTCHA. Clicking on the CAPTCHA automatically downloads a malicious file onto the victim’s system. If this file is installed or executed, crucial user information including private keys to digital wallets is stolen. The main risk lies in running the malicious file after downloading. By leveraging user trust in brands like Cloudflare, hackers deceive them. While there is no official report confirming this type of attack by Cloudflare or security entities, user reports and observed samples reinforce the possibility of such attacks. To mitigate this threat, recommendations include disabling automatic downloads in browsers, avoiding suspicious sites, using up-to-date antivirus software, checking URLs before interacting with CAPTCHAs, and refraining from executing unknown files. The new hackers’ method using fake Cloudflare pages signifies the increasing complexity of cyber attacks and poses a greater risk to active cryptocurrency users. Until official security entities or Cloudflare confirm these attacks, the best defense is awareness, caution, and adherence to security measures. Users should stay vigilant and refrain from blindly trusting any familiar-looking page. Visit the digital currencies’ live price page to monitor token and cryptocurrency prices in real-time.
