There are plenty of scams competing to get your cash and credentials, with everyone from Paypal, YouTube and Amazon Prime users in the phishing attack crosshairs. Now it has been revealed that MAGA supporters could be next in line as a new attack targeting buyers of the $Trump meme coin is confirmed. Here’s what you need to know.
Beware This $Trump Scam
Crypto phishing scams are hardly new, but they are increasingly evolving and constantly looking for news hooks to use as bait. With President Trump flying high in media headlines, as you might expect just a few weeks into his second term, the attention of the scammers has turned to the $Trump meme coin and those looking to buy whether for investment or Trump memorabilia purposes.
According to a March 10 analysis by Max Gannon from the Cofense intelligence team, an ongoing email campaign is spoofing the Binance desktop with a download that promises to be a conduit to buying $Trump coins but is actually a malware installer. Indeed, Gannon said, that the threat actors behind the campaign “can connect to
infected computers in under 2 minutes,” and when they do, they are going straight for your passwords.
By using Binance as the sender’s name for the emails in question, including a risk warning hook to grab attention, the threat actors have taken pains to strike fast and hard. For example, Gannon said, they ensured that “although they did not directly copy the Binance $TRUMP coin page or the Binance client download page, the threat actors combined images from both into a convincing page which included further install steps farther down.”
The result of getting as far as the page to buy $Trump coins means that you are just a click away from disaster: instead of a Binance desktop client it actually leads to an installer for the ConnectWise remote access trojan which will allow the threat actor to take control of your computer and target passwords saved on the device.
The moral of this story is that if you want to buy $Trump meme coins or any kind of cryptocurrency, go straight to the source, Binance or otherwise, and don’t follow links sent by dodgy emails looking to grab your attention using knee-jerk messaging.
