On February 11, 2025, Unit42 researchers Shu Wang, Daiping Liu, and Fan Fei published a timely threat intelligence report highlighting a surge in newly registered domains (NRDs) tied to sports-themed cryptocurrency scams.
These domains were identified in the two weeks leading up to the 2025 Super Bowl, a period often exploited by cybercriminals due to heightened public interest and online activity.
The report revealed that scammers are leveraging fraudulent meme coins and pump-and-dump crypto schemes to exploit unsuspecting victims.
By using sports-themed branding, celebrity imagery, misleading tokenomics, and aggressive marketing tactics, these scams aim to lure individuals into investing in worthless or fraudulent cryptocurrencies.
The primary tools employed by these malicious actors include:
To protect against such scams, individuals should:
Unit42’s timely threat intel underscores the importance of vigilance during major events like the Super Bowl.
By identifying and exposing these fraudulent domains early, cybersecurity experts can help mitigate risks and protect potential victims from falling prey to crypto scams.
Playwright-MCP (Model Context Protocol) is a cutting-edge tool designed to bridge the gap between AI…
JBDev is a specialized development tool designed to streamline the creation and debugging of jailbreak…
The Kereva LLM Code Scanner is an innovative static analysis tool tailored for Python applications…
Nuclei-Templates-Labs is a dynamic and comprehensive repository designed for security researchers, learners, and organizations to…
SSH-Stealer and RunAs-Stealer are malicious tools designed to stealthily harvest SSH credentials, enabling attackers to…
Control flow flattening is a common obfuscation technique used by OLLVM (Obfuscator-LLVM) to transform executable…