“The Hypersphere Mehdi Venture Investment Partner Menh Pharuk was a victim of phishing attack due to a fake ZOOM call. The incident ended with the loss of several cryptomamen and complete compromising of the device. One minute i was preopting for a zoom call. Ten Minutes Later, Large Part of My Life Savings Were Gone. It Started with A Message On Telegram From Alex Lin […]”, – WRITE: Businessua.com.ua
The Hypersphere Mehdi Venture Investment Partner Menh Pharuk was a victim of phishing attack due to a fake ZOOM call. The incident ended with a loss of several cryptomamen and complete compromise of the device.
One minute i was preopting for a zoom call. Ten Minutes Later, Large Part of My Life Savings Were Gone.
It Started with A Message On Telegram From Alex Lin – Someone and Knew. HE WANTED TO CATCH UP.
I Shared My Calendly Link.
HE BOOKED A SLOTT FOR The NEXT DAY.A FEW MINUTES … pic.twitter.com/xjia0hte2j
– Mehdi farooq (@mehdifrooq2) June 19, 2025
According to Pharuk, it all started with a message to Telegram from his acquaintance – Alex Lina. As they communicated earlier, the invitation to the video traffic was not suspicious. The investor sent a link to his calendly, and the “familiar” spent time the next day.
Immediately before the call, the interlocutor suggested switching to Zoom Business, referring to the Compliance requirements. It was also mentioned that another familiar Pharuka would join the call – it seemed plausible, given his participation in financial agreements.
There was no sound when calling at Zoom. In the chat, the pharyuk was advised to update the application to correct the problem. After launching the “update”, its system was compromised.
“Six wallets are empty (this is my mistake, I [не забезпечив достатнього контролю]). The laptop is completely compromised. The years of savings have disappeared in minutes, ”the investor said.
According to Pharuk, during the attack, the attacker continued to communicate in Telegram, creating the illusion of ordinary dialogue. Later it became known that Lina’s account was broken.
Pharuk noted that after the incident, “white” hackers contacted him to help investigate the attack. Its organization is probably a DangerousPassword group associated with North Korea.
Recall that on April 14, the attackers stole $ 100,000 in the CEO platform Emblem Vault Jake Gallen through the Zoom connection.
The gun
Please wait …