Beware of 'FraudonTok': fake TikTok clones steal crypto users' seed phrases via AI deepfakes & SparkKitty malware.
PorAinvest
viernes, 8 de agosto de 2025, 12:21 am ET1 min de lectura
FISI--
The scam begins with enticing ads on social media platforms like TikTok and Facebook, promising discounted products and influencer endorsements. Users are lured to fake TikTok Shop websites, where they are tricked into downloading malicious apps, entering fake login credentials, or depositing cryptocurrency into fraudulent storefronts [1].
One of the key components of the FraudonTok campaign is the use of AI-generated deepfakes, which mimic influencers and brand ambassadors. These deepfakes, along with fake ads, are designed to create a sense of legitimacy and trust, making users more likely to fall for the scam [1].
The campaign also utilizes a cross-platform malware called SparkKitty, which can infect both Android and iOS devices. This malware is often disguised as a TikTok Shop affiliate management platform, encouraging users to download an app that can hijack accounts and steal sensitive information, including cryptocurrency seed phrases [1].
To protect against this threat, users are advised to exercise caution when encountering deals that seem too good to be true. It is crucial to double-check URLs for any anomalies and to be wary of unsolicited requests for cryptocurrency deposits. The official TikTok Shop and affiliate programs are hosted on tiktok.com and adhere to strict guidelines [1].
This campaign is part of a broader trend of sophisticated phishing operations targeting popular platforms. Similar scams have been observed targeting Meta Business Suite users in a campaign called Meta Mirage [1].
In response to these threats, the U.S. Department of the Treasury's Financial Crimes Enforcement Network (FinCEN) has issued an advisory urging financial institutions to be vigilant in identifying and reporting suspicious activity involving convertible virtual currency (CVC) kiosks [1].
References:
[1] https://medium.com/@Cyber-AppSec/15-000-fake-tiktok-shop-domains-are-stealing-crypto-3835c17563b0
[2] https://theoutpost.ai/news-story/ai-powered-scam-campaign-targets-tik-tok-shop-users-with-fake-domains-and-malware-18673/
META--
Beware of 'FraudonTok': fake TikTok clones steal crypto users' seed phrases via AI deepfakes & SparkKitty malware.
In a worrying trend, cybersecurity researchers have uncovered a sophisticated scam campaign targeting TikTok users, dubbed "FraudonTok." This elaborate scheme leverages AI-generated content and fake domains to steal cryptocurrency and compromise user accounts. The campaign, which has been dubbed "FraudonTok," involves over 15,000 fake TikTok Shop websites hosted on various top-level domains (TLDs) [1].The scam begins with enticing ads on social media platforms like TikTok and Facebook, promising discounted products and influencer endorsements. Users are lured to fake TikTok Shop websites, where they are tricked into downloading malicious apps, entering fake login credentials, or depositing cryptocurrency into fraudulent storefronts [1].
One of the key components of the FraudonTok campaign is the use of AI-generated deepfakes, which mimic influencers and brand ambassadors. These deepfakes, along with fake ads, are designed to create a sense of legitimacy and trust, making users more likely to fall for the scam [1].
The campaign also utilizes a cross-platform malware called SparkKitty, which can infect both Android and iOS devices. This malware is often disguised as a TikTok Shop affiliate management platform, encouraging users to download an app that can hijack accounts and steal sensitive information, including cryptocurrency seed phrases [1].
To protect against this threat, users are advised to exercise caution when encountering deals that seem too good to be true. It is crucial to double-check URLs for any anomalies and to be wary of unsolicited requests for cryptocurrency deposits. The official TikTok Shop and affiliate programs are hosted on tiktok.com and adhere to strict guidelines [1].
This campaign is part of a broader trend of sophisticated phishing operations targeting popular platforms. Similar scams have been observed targeting Meta Business Suite users in a campaign called Meta Mirage [1].
In response to these threats, the U.S. Department of the Treasury's Financial Crimes Enforcement Network (FinCEN) has issued an advisory urging financial institutions to be vigilant in identifying and reporting suspicious activity involving convertible virtual currency (CVC) kiosks [1].
References:
[1] https://medium.com/@Cyber-AppSec/15-000-fake-tiktok-shop-domains-are-stealing-crypto-3835c17563b0
[2] https://theoutpost.ai/news-story/ai-powered-scam-campaign-targets-tik-tok-shop-users-with-fake-domains-and-malware-18673/
Divulgación editorial y transparencia de la IA: Ainvest News utiliza tecnología avanzada de Modelos de Lenguaje Largo (LLM) para sintetizar y analizar datos de mercado en tiempo real. Para garantizar los más altos estándares de integridad, cada artículo se somete a un riguroso proceso de verificación con participación humana.
Mientras la IA asiste en el procesamiento de datos y la redacción inicial, un miembro editorial profesional de Ainvest revisa, verifica y aprueba de forma independiente todo el contenido para garantizar su precisión y cumplimiento con los estándares editoriales de Ainvest Fintech Inc. Esta supervisión humana está diseñada para mitigar las alucinaciones de la IA y garantizar el contexto financiero.
Advertencia sobre inversiones: Este contenido se proporciona únicamente con fines informativos y no constituye asesoramiento profesional de inversión, legal o financiero. Los mercados conllevan riesgos inherentes. Se recomienda a los usuarios que realicen una investigación independiente o consulten a un asesor financiero certificado antes de tomar cualquier decisión. Ainvest Fintech Inc. se exime de toda responsabilidad por las acciones tomadas con base en esta información. ¿Encontró un error? Reportar un problema
SOBRE NOSOTROS
Nuestra historiaAutores de noticiasBase de conocimientosPolítica de privacidadTérmino de usoDescargo de responsabilidad de corretaje de tercerosTérminos de uso de AIMEDivulgaciones de riesgos de AInvest AICarrerasCONTÁCTENOS
Email: support@ainvest.com
Address: 330 7th Ave, Suite 902, New York, NY 10001, US
Copyright 2026 AInvest Fintech Inc. All rights reserved.
Comentarios
Aún no hay comentarios