Cryptocurrency Theft: The Psychology Behind the Heists

Cryptocurrency theft is a growing concern, with hackers using sophisticated tactics to steal millions of dollars' worth of digital currency. In fact, a recent study found that 71% of cryptocurrency exchanges have been hacked.

The psychology behind these heists is fascinating and frightening. Hackers often use social engineering tactics, such as phishing and pretexting, to trick victims into revealing their login credentials. A notable example is the 2016 hack of Bitfinex, where hackers used a phishing email to steal $72 million worth of Bitcoin.

The use of psychological manipulation is a key factor in cryptocurrency theft. Hackers often exploit human emotions, such as greed and fear, to trick victims into making poor decisions. For instance, the 2018 hack of Coincheck, which resulted in the theft of $530 million worth of NEM, was carried out by hackers who used a phishing email to trick employees into revealing their login credentials.

The consequences of cryptocurrency theft can be devastating for victims. In addition to financial losses, victims may also experience emotional distress and a loss of trust in the cryptocurrency ecosystem.

Broaden your view: What Are Cryptocurrencies Used for

Cryptocurrency theft cases are becoming more common and sophisticated. A recent example is the Bitfinex hack, where a hacker, Ilya Lichtenstein, stole almost 120,000 bitcoin in 2016.

The stolen bitcoin was worth around $70m at the time, but had risen to over $4.5bn by the time Lichtenstein was arrested. He laundered the stolen funds with the help of his wife, Heather Morgan, using various techniques, including fictitious identities and cryptocurrency mixing services.

Lichtenstein was sentenced to five years in prison for his involvement in the money laundering conspiracy. He expressed remorse for his actions and hopes to use his skills to fight cybercrime after serving his sentence.

In another case, Malone Lam and Jeandiel Serrano stole $230 million worth of cryptocurrency by targeting a victim through social media posts and using social engineering tactics. They went on a lavish spending spree before being caught.

The men, who operated under aliases, were arrested by the FBI and charged with conspiracy to commit wire fraud and money laundering. The investigation is ongoing, and the victim's identity has not been disclosed.

Cryptocurrency theft cases often involve sophisticated hacking and social engineering tactics. In the Lam Serrano case, the men used well-crafted communications to gain access to a cloud drive containing the victim's secret keys to their digital wallets.

The stolen cryptocurrency was transferred to a compromised crypto wallet, and the men used various techniques to disguise their theft. They spread the money between several cryptocurrency exchanges and mixing services before going on their spending spree.

Lichtenstein's case highlights the consequences of committing cybercrimes. He was sentenced to five years in prison and ordered to serve three years of supervised release. His wife, Heather Morgan, is scheduled to be sentenced on November 18.

Cryptocurrency theft cases are a growing concern in the cryptocurrency world. The Lam Serrano case and the Bitfinex hack demonstrate the need for increased security measures to protect against sophisticated hacking and social engineering tactics.

Readers also liked: Cryptocurrency Fraud Cases

North Korea has been linked to several high-profile cryptocurrency heists, with one notable example being the hack of the Bangladesh Central Bank in 2016, which resulted in the loss of $81 million worth of cryptocurrency.

The country's involvement in cryptocurrency theft is often attributed to its well-documented cyber warfare capabilities.

North Korean hackers are known for their sophistication and stealth, making them a formidable force in the world of cryptocurrency hacking.

A 2018 report by the United Nations found that North Korea had used cryptocurrency to evade sanctions and fund its nuclear program.

The country's hackers have been known to use phishing emails and other social engineering tactics to gain access to cryptocurrency wallets and exchanges.

In 2018, North Korea was accused of hacking into the cryptocurrency exchange Bithumb, resulting in the loss of $31 million worth of cryptocurrency.

To protect your cryptocurrency from theft, you need to take some serious steps to secure your digital assets. Strong and unique passwords are a must, as creating complex schemes is critical in protecting your digital files and access to your crypto keys and details.

Two-factor authentication (2FA) is also essential, including biometrics on your device and online, to keep hackers from accessing your digital wallet and keys. I've seen too many people fall victim to phishing scams, so it's crucial to invest an hour in a learning course on understanding phishing to quickly identify a lure.

Hardware wallets are far more challenging to crack than software-only versions, so consider using one to store your currencies. Secure software and updates are also critical, just like in the enterprise IT world, patching and updating your devices' operational systems, applications, and cybersecurity endpoint security tools is vital.

Avoiding public WiFi and using a VPN to hide your identity is also a must, as leveraging a VPN on a device anywhere worldwide is critical for protecting your digital wallets from hackers. Here are some key cybersecurity measures to keep in mind:

Implementing firewalls, network perimeter security, and employee training education on cybersecurity best practices are also critical for organizations and service providers to protect against cryptocurrency theft.

Social engineering is a significant factor in crypto heists. Hackers use it to impersonate someone within the target's inner circle, creating well-crafted emails, text, and deepfake voicemails.

They troll social media platforms like LinkedIn, Facebook, and others to find people who promote themselves as "crypto global players." This makes it easier to compromise them.

Most crypto players use anonymous names and operate in the dark web or underground digital communities. This anonymity makes them more vulnerable to social engineering attacks.

Lam and Serrano, the perpetrators of the Lam Serrano heist, used social engineering to identify their victim through social media posts. They posed as Google and Gemini support engineers to gain access to a cloud drive containing the victim's secret keys.

They successfully compromised multifactor authentication (MFA) to transfer the keys from Gemini to a compromised crypto wallet. This shows how effective social engineering can be in cryptocurrency theft.

Ego plays a huge part in crypto scams, with people only satisfied if they become billionaires. Many fall for scams because they desire to become billionaires with just a few clicks.

Hackers prey on their victims' egos, offering triple returns on Bitcoin, and victims will quickly transfer funds to the scammer. Feeling like you're above the law entices people to break it, and the digital wallet's ID helps shield who is the valid owner of the asset, giving the owner a feeling of invisibility.

People are lured into investing in crypto by their sports heroes, who want to be part of the crypto world, and end up losing their money in scandal and fraud. Scammers like FTX lure millionaire business people, sports figures, and politicians into investing in their firms.

See what others are reading: Investing in Cryptocurrency Long Term

Trust and Authority can be a double-edged sword in the world of cryptocurrency. Law enforcement has slowly caught up with blockchain, digital currency, and crypto laundering.

High-end businesses accepting bitcoin on a global scale can actually attract hackers who devise clever ways to launder stolen bitcoin. This is a growing concern.

Law enforcement has often successfully recovered stolen crypto by tracing it through various exchanges for illicit transfers.

In crypto social circles, ego plays a huge role in a very tight social group. Players flaunt their wealth, and less successful traders wanting to become an "Alpha" will be more inclined to take more risks.

This behavior makes them more open to becoming victims of fraud. Hackers troll crypto social circles, looking for victims who follow the major players.

They then approach them with the ideal crypto investment guaranteed to make them the top trader in their social world.