Pig Butchering Goes Global: Scam-as-a-Service Fuels Crypto Crime Wave
- By CDOTrends editors
- April 02, 2024
Picture this: When a charming profile catches your eye, you're swiping through a dating app. An easy conversation starts, then quickly moves to WhatsApp. Soon, you'll hear about exciting cryptocurrency investments with sky-high returns. Sounds too good to be true? It is—if you're talking to a pig butcherer.
Originally a Chinese organized crime phenomenon, these scams have evolved with frightening speed. Sophos, a global cybersecurity firm, has uncovered how scammers far beyond China are cashing in with ready-made fraud kits. Their methods are getting scarily smooth.
From fake apps to 'DeFi savings'
"Pig butchering" or sha zhu pan scams (so named because victims are "fattened up" before the slaughter) often begin with a wrong number text or a carefully crafted persona on a social platform. Two years ago, Sophos X-Ops researchers traced the rise of "CryptoRom": Victims were tricked into downloading fake crypto trading apps. Things got trickier—with scammers bypassing Apple and Google Play store security—but the telltale signs were still there.
Not anymore. The latest scams, dubbed "DeFi savings" by Sophos, prey on crypto novices. They're sold as effortless, high-earning investments—like crypto money-market accounts. Victims unknowingly add their wallets to scammer-controlled trading pools, which are then bled dry.
Welcome to the Pigsty-as-a-Service market
" When pig butchering first appeared during the COVID-19 pandemic, the technical aspects of the scams were still relatively primitive and required a lot of effort and guidance to successfully scam victims. Now, as the scams have become more successful and the fraudsters have refined their techniques, we're seeing a similar evolution to what we've seen with ransomware and other types of cybercrime in the past: the creation of an as-a-service model," warns Sean Gallagher, a principal threat researcher at Sophos X-Ops.
Scammers previously had to work hard to gain victim trust. Now, off-the-shelf kits sold on the dark web streamline the whole twisted process. These kits provide the setup for DeFi scams, lowering the barrier to entry for new worldwide fraud rings.
The financial carnage is already massive—billions lost last year alone. And with kits making things so easy for scammers, this dark market is only set to explode.
The crypto scam arms race
Let's rewind. Picture those "CryptoRom" scams—victims lured in on dating apps, tricked into downloading shady crypto software. Think kludgy workarounds to breach iPhones, that sort of thing. Old news.
Then, 2022 hits. Scammers get cunning, and their fake apps are suddenly slipping through the cracks into the App Store and Google Play. While everyone's buzzing about fake cryptocurrency trading pools (liquidity mining), the fraudsters are figuring out how to game that.
In 2023, Sophos X-Ops uncovered two vast pig butchering rings—one based in Hong Kong and one in Cambodia. These rings leveraged legitimate crypto trading apps and created elaborate fake personas to lure victims and steal millions. Further investigation revealed they were adding AI to their arsenal.
At the end of 2023, Sophos X-Ops uncovered a vast liquidity mining operation involving three separate Chinese organized crime rings targeting nearly 100 victims. Sophos X-Ops first noticed the availability of pig butchering scam kits during the investigation into this operation.
Now, fast forward to today. Sophos X-Ops uncovers these next-gen scams, and they're scary-smooth. No more tech trickery to get into your wallet; barely any of that fake-romance sweet-talking is even needed.
"The fraudsters have also learned how to better 'market' their schemes. They're taking advantage of how liquidity mining pools operate to steal the funds by telling victims it's a simple investment account. This is often an easier sell, especially since most people don't understand the ins and outs of cryptocurrency trading, and everything is done under the guise of trusted brands,” said Gallagher.
While scammers upgrade, Sophos hasn't been idle. Their X-Ops team has busted massive fraud rings, even uncovering AI tools aiding scammers. But the cat-and-mouse game continues. It's a battle against criminals armed with increasingly easy-to-use, hard-to-trace tech.
Protect yourself from crypto-heartache
- If it sounds too good, it is: No legit investment promises instant riches with zero risk.
- Stranger danger: Be extremely wary of anyone online pushing you towards crypto deals, especially if it starts with a 'wrong' text or social media friend request.
- DYOR: Do your own research! Look up crypto platforms or apps before using them. Never install software from untrusted sources.
Got scammed? Sadly, time is critical. Withdraw any remaining funds and report it to the authorities immediately.
The takeaway
Pig butchering, once somewhat primitive, is now a global, billion-dollar threat to anyone exploring crypto. Arm yourself with knowledge—the scammers are counting on you being clueless.
Image credit: iStockphoto/Denys