\n<\/p>\n
If you get a message from someone at The Verge<\/em> asking to schedule an interview about cryptocurrency, don\u2019t do it. There\u2019s a phishing scam going around that attempts to trick users into clicking on a fake Calendly link to \u201cschedule\u201d phony interviews in order to steal Discord credentials for a wallet-draining scam.<\/p>\n<\/div>\n We recently discovered that a bad actor has been impersonating Verge <\/em>science reporter Justine Calma to carry out this scam. Justine recently changed her handle on X (formerly Twitter) from @justcalma to @justinecalmajourno. The scammer hijacked her old handle @justcalma \u2014 which was still present on her Verge<\/em> profile at the time \u2014 and leveraged her identity when messaging users about a fake interview.<\/p>\n<\/div>\n If a victim said they were interested, the bad actor would send them <\/strong>a link to a phishing site disguised as a Calendly page. The page attempts to steal the victim\u2019s credentials by asking them to \u201cauthorize\u201d their Discord account to schedule the interview. Based on how other Calendly scams have played out in recent weeks, the attacker would then likely use the victim\u2019s credentials to gain access to their Discord or other social media accounts and share a crypto wallet-draining scam with users.<\/p>\n<\/div>\n Reporters from The Verge <\/em>aren\u2019t the only ones attackers are impersonating. Earlier this month, the blockchain security platform CertiK was contacted on X<\/a> by an attacker pretending to be a reporter from Forbes<\/em> who asked to schedule an interview through Calendly. After following through with the scam, bad actors gained access to CertiK\u2019s X account<\/a>, which currently has around 346,000 followers. The attacker posted a tweet that warned users about a fake exploit. It prompted them to use a malicious link to the Revoke.cash crypto website that would empty the wallets of unknowing users.<\/p>\n<\/div>\n While the scam seems to be primarily targeting users involved in the crypto industry, it\u2019s still best to remain vigilant any time you receive links to Calendly or other form sites \u2014 especially when they ask you to link your social media accounts. Make sure the link you receive is legitimate by checking it against the actual domain it\u2019s trying to bring you to. That means closely looking for misspellings, added hyphens, or other discrepancies between the real URL and the one you received, as scammers often try to make their phony URL look as close to the real thing as possible. The fake Calendly site used in the current iteration of this scam, which is different from the one used in the CertiK attack in December, is still online as of this writing. <\/p>\n<\/div>\n