South Korean Government’s YouTube Channel Hacked in an Elon Musk-Crypto Scam [Report]:
Hackers are not smiling as they have now directed focus towards governmental organisations.
According to reports, hackers attacked several South Korean YouTube channels in the past few months.
After which they upload crypto related videos to extort money from victims.
Among the hacked account was the official YouTube channel of the South Korean government.
Earlier this month, a group of internet fraudsters compromised the account so they could promote a crypto scam featuring the world’s richest man, Elon Musk’s image.
A recent coverage revealed that hackers had attacked the YouTube channels of the South Korean government, the National Museum of Modern and Contemporary Art, and the Korea Tourism Organization.
In the operation, hackers changed the account’s name to “SpaceX Invest” to convince viewers that it was related to the American spacecraft manufacturer, spearheaded by Elon Musk.
To strengthen their bait, the evil doers posted video clips of interviews where Elon talked about bitcoin and other digital currencies.
However, the government was quick to intervene and identified the fraud a few hours later.
Apart from the accounts of Government officials, individual YouTube channels were also compromised.
After breaching the security of a popular individual account with over 560,000 subscribers, hackers started sharing videos of illegal software that investors could download and quickly become rich.
Park Tae-hwan – team leader at AhnLab’s security emergency response center – disclosed that the real intentions of most attackers is to gain access to popular YouTube channels and promote fraudulent crypto schemes to a vast audience.
As a wider audience will get more victims.
“Each organization should check their security response system as now may be an experimenting period for bigger attacks,” he warned.
Kim Seung-joo – a professor at Korea University – explained the three common hacking methods as; phishing attacks and credential stuffing, information stealers, and malware.
In his view, scammers are wise enough to target independent YouTube accounts and not Youtube itself, to prevent intervention from Google :
“If the attack was on the YouTube platform itself, the damage may have been bigger, and Google would have released an official announcement.”