A new scam-as-a-service offering has been found offering ready-to-use code to cyberattackers, allowing them to launch various crypto-related attacks. This service, called Inferno Drainer, has been operational since February. It has already resulted in the theft of around $6 million in crypto in just four months.
Ready-to-use scam offerings
According to the scam-detecting firm Scam Sniffer, Inferno Drainer is being advertised as a scam service, specializing in multi-chain scams.
It charges 20% of the stolen assets as fees. It can go up to 30% for services that include developing a phishing site.
Since March 27, it has created over 689 phishing websites masquerading as popular brands. Most of these websites appeared online after May 14, resulting in an increase in these scams around that time.
These sites target over 220 brands, including ChainGPT, Sui, Pepe, Blur, OpenSea, MeraMask, zkSync, and Lens Protocol.
The service offerings include a web-based panel with customization options. A free trial of it is being promoted on Telegram groups.
The loss
It has already helped several attackers target around 4,888 victims, resulting in the theft of around $5.9 million worth of cryptocurrency from Mainnet ($4.3 million), Arbitrum ($0.79 million), Polygon ($0.41 million), and BNB Chain ($0.39 million).
One of the promotional screenshots showcased a drain transaction worth $103,000, using the Permit2 exploit (a unified approval system for crypto-transactions).
One of the victims has lost assets worth around $400,000, which is thought to be the biggest scam by value.
Concluding note
Inferno Drainer is yet another classic example of the increasing sophistication of organized cybercrime. It can be considered an enhanced form of the Classiscam scheme that offered ready-to-use phishing pages mimicking popular brands. Deploy a proactive defense posture, with a real-time anti-scam protection solution for internet users across organizational networks, suggest security experts.