CTM360 spots Malicious ‘ClickTok’ Campaign Targeting TikTok Shop users

CTM360 has uncovered the “FraudOnTok” malware campaign that uses fake TikTok shops to distribute SparkKitty spyware, stealing cryptocurrency wallets and funds. The campaign combines phishing and malware tactics through trojanized apps, fake websites, and AI-generated ads. #SparkKitty #ClickTok #FraudOnTok

Keypoints

FraudOnTok is a global malware campaign targeting TikTok Shop users with SparkKitty spyware.
The operation uses fake TikTok websites, trojanized apps, and AI-generated ads to deceive victims.
Victims’ cryptocurrency wallet credentials are extracted through screenshots and image access on compromised devices.
The scammers employ a hybrid approach of phishing and malware to increase their stealth and impact.
CTM360 recommends verifying domain authenticity, avoiding unknown software, and using strong antivirus solutions for protection.

update,

change in the campaign name from “ClickTok” to “FraudOnTok

https://www.ctm360.com/reports/fraudontok-tiktok-shop-scam-report

SHARE THIS STORY

WhatsApp X (Twitter)Telegram Bluesky Facebook LinkedIn Threads Email Print

CTM360 spots Malicious ‘FraudOnTok’ Campaign Targeting TikTok Shop users