Jake Gallen, the CEO of the non-fungible token (NFT) platform Emblem Vault, is urging crypto users to be cautious when using video conferencing platforms like Zoom. Gallen’s warning follows a harrowing experience in which he lost over $100,000 in digital assets after falling victim to a scam orchestrated by the nefarious hacker group “ELUSIVE COMET.”
On April 11, Gallen shared his story on X (formerly Twitter), revealing that his personal assets, including Bitcoin (BTC) worth $85,902 and Ether (ETH) valued at $1,646, were stolen from multiple wallets. Gallen attributed the theft to a complete computer compromise that occurred during a Zoom call with a YouTube personality with over 90,000 subscribers.
Working with @_SEAL_Org we were able to retrieve a malware file that was installed on my computer during a @Zoom call with a youtube personality of over 90k subs.
— jake (@jakegallen_) April 14, 2025
Below I will share details about that person, my experience, and this malicious software known as GOOPDATE ↓ https://t.co/xXoeSWLUXA
Gallen later learned from cybersecurity firm The Security Alliance (SEAL) that the scam was part of a broader campaign targeting crypto users. According to SEAL, ELUSIVE COMET uses sophisticated social engineering tactics to trick victims into installing malware during Zoom calls. In Gallen’s case, a malware file named “GOOPDATE” was secretly installed on his computer during the interview, granting the hackers access to his crypto wallets.
Also Read: Whale NFT Bridge Goes Live: TON to Solana Migration Launches on Bridgemedaddy.com
The attack highlights a serious vulnerability in Zoom’s default settings. Gallen explained that Zoom’s remote access feature, which allows one participant to control another’s screen, is enabled by default. This feature made it easier for the hacker to gain unauthorized access to his device.
NFT collector Leonidas and SEAL security researcher Samczsun confirmed that Zoom’s default remote access settings pose a risk to crypto users, advising against leaving this feature enabled. SEAL also reported that ELUSIVE COMET has ties to a venture capital firm called Aureon Capital, which has been linked to millions of dollars in stolen funds.
If you run a crypto startup and use Zoom go into the admin settings and check these two boxes and lock them immediately
— Leonidas 🧡 $DOG (@LeonidasNFT) April 11, 2025
If you don't do this anybody who is on a Zoom call with your employees can take over their entire computer by default pic.twitter.com/TbGq0lj8mu
Gallen’s story serves as a stark reminder for the crypto community to exercise caution when using video conferencing platforms and to review security settings to prevent remote access.
Disclaimer: The information in this article is for general purposes only and does not constitute financial advice. The author’s views are personal and may not reflect the views of Chain Affairs. Before making any investment decisions, you should always conduct your own research. Chain Affairs is not responsible for any financial losses.
I’m a crypto enthusiast with a background in finance. I’m fascinated by the potential of crypto to disrupt traditional financial systems. I’m always on the lookout for new and innovative projects in the space. I believe that crypto has the potential to create a more equitable and inclusive financial system.
