[PSA]: FraudOnTok - Fake Tiktok shops Delivering malware stealing crypto

[Dave1]

It was reported by a cyber security researchers that there are 15,000 fake Tiktok shop domains are in the wild delivering malware which includes targeting crypto wallets.



So the above are some of the imitation of the real Tiktok shop and it's really hard to distinguished them at first glance. The vast majority of these domains are hosted on top-level domains such as .top, .shop, and .icu. So obviously this lookalike domains are just hosting page for their delivery of the malware. And one way to spread their malware is thru Facebook and Tiktok itself.

In any case the fake sites are going to:

- ask buyers or even affiliates to fake and discounted items and it will be in the form of cryptocurrency.
- convincing affiliates to top up crypto wallets, obviously to the criminals themselves of a promise of future commission.
- using this fake sites, they can get your login credentials and then will instruct you to download trojanized Tiktok apps.

And the malware has the capability as well to read any screenshot in your gallery for crypto wallet seeds and private key.

https://www.ctm360.com/reports/cyberheist-phish-report (you need to download the report)

I was planning to be a affiliate on Tiktok, but due to our government clamping it, I decided not to pursue it. But damn, this is really worst for those affiliates or even those buyers who are using this app.

[cryptomaniac_xxx]

First time that I heard that Tiktok is being used as a weapon for this cyber criminals. Although I wouldn't be surprised to this kind of attacks at all as Tiktok is really gaining as one of the top social media platform anywhere.

The bad news is that all are vulnerable in this kind of attacks, if you are a buyer, your information are going to be stolen. If you are a affiliate, you might fall on depositing on a crypto address that they are given to you because you want your commission.

So this is another remainder that we should also be vigilant in everything that we see with regards to our everyday life like browsing our favorite social media in Tiktok.

[planingkoala]

Yeah, that’s exactly the kind of thing that makes me double‑check every link now. It’s wild how close those fake domains can look – half the time your brain just auto‑fills “oh, legit” until it’s too late. The screenshot‑stealing part freaks me out most; it’s like they’re counting on you being careless for two seconds. I was curious about Tiktok affiliates too, but honestly, this feels like one of those “not worth the gamble” moments.

[Ivystar5]

This is basically target for amateurs in the crypto world, just the everyday user who doesn't know their left and right, the fact that it reads images is good point for me to be convinced that it's basically targeted for amateurs, because someone with good knowledge of crypto wouldn't attempt screenshoting seed phrase, infact most secured wallet don't allow screenshot only manual copying.

Additionally, tiktok shop is mostly used by woman from my perspective because most men don't make use of that app but if Facebook is among them it could affect many but only woman are dominant of tiktok and the products woman patronise are most listed on the tiktok shop, however I'm not a tiktok user so identifying the difference would also be difficult for me.

[Yaunfitda]

This is basically target for amateurs in the crypto world, just the everyday user who doesn't know their left and right, the fact that it reads images is good point for me to be convinced that it's basically targeted for amateurs, because someone with good knowledge of crypto wouldn't attempt screenshoting seed phrase, infact most secured wallet don't allow screenshot only manual copying.

I wouldn't say that it just target amateurs in the crypto world, there are a lot of investors that have been in the crypto world who might fall for any scam attempts by this cyber criminals as it really hard to separate what's real and what's fake. That's why it's very important to very everything first.

Additionally, tiktok shop is mostly used by woman from my perspective because most men don't make use of that app but if Facebook is among them it could affect many but only woman are dominant of tiktok and the products woman patronise are most listed on the tiktok shop, however I'm not a tiktok user so identifying the difference would also be difficult for me.

Mate, I don't know where you  coming from, but here in our country, tiktok is very famous as there are a lot of sellers here. Even my wife attempted one time to sell items in tiktok and she was successful. The only thing she didn't like is that it is heavily tax here, so she quit being a seller or affiliate. But still, there are a lot of my countrymen who make millions in tiktok shop regardless of their gender.

[albon]

According to one source ^[1], TikTok has over 1.59 billion monthly active users worldwide which is indeed a massive user base, and there are millions are involved in cryptocurrency, creating fake domains impersonating TikTok shops is a direct attempt to target the users of this global and popular app.

Anyone who doesn’t do research , doesn’t use the official domain, or doesn’t install the official TikTok app is highly likely to fall victim to this type of scam whether they are buyers, affiliates, or just regular TikTok users.

Everyone who is active on social media should be careful when clicking on an advertisement related to TikTok, as they are already promoting these domains extensively there. Also, no one should store private keys or recovery phrases of their crypto wallets as screenshots on their phone. because if the device is compromised and a trojanized version of TikTok is installed,, these screenshots will fall right into the hands of the scammers.

[Ivystar5]

✂️✂️

I wouldn't say that it just target amateurs in the crypto world, there are a lot of investors that have been in the crypto world who might fall for any scam attempts by this cyber criminals as it really hard to separate what's real and what's fake. That's why it's very important to very everything first.

I would agree with you for some reason must especially with the recent happenings of Jimmy bitcoin who lost his bitcoin to some fake sparrow wallet application. However, in the area of tiktok, we have more of amateurs using the application, where you can find old and good investors in on X formally know as Twitter. There is no doubt about it.

✂️✂️

Mate, I don't know where you  coming from, but here in our country, tiktok is very famous as there are a lot of sellers here. Even my wife attempted one time to sell items in tiktok and she was successful. The only thing she didn't like is that it is heavily tax here, so she quit being a seller or affiliate. But still, there are a lot of my countrymen who make millions in tiktok shop regardless of their gender.

Absolutely! though not in my own area, so the difference varies based on location. However the end lesson is we should be careful and ask more questions when we do not understand our steps, better to miss an opportunity than get it and loss it all to a scammer or hacker. Like in this tiktok studio application, carefulness is not just needed but absolutely vigilance is required incase you device shows a little chances.