A prominent Russian Instagram influencer’s account was recently compromised in a sophisticated cyberattack that combined SIM-swapping, AI-generated deepfakes, and multi-format phishing to deceive followers and steal sensitive banking information.
The incident, which is under police investigation, highlights the increasing technical complexity of social media scams and the heightened risks posed by advances in artificial intelligence.
The attack began when the influencer’s Instagram profile suddenly announced a massive cash giveaway of $125,000, enticing followers to join a “project” via a link in her bio.
The campaign’s apparent authenticity stemmed from its execution: the attackers repurposed old video footage of the influencer, stitched it together with new content, and overlaid it with a voiceover generated by neural network-powered deepfake technology.
The familiar face, upbeat tone, and polished visuals made the scam seem indistinguishable from legitimate promotional efforts typically seen on the influencer’s account.
In addition to the video, the attackers posted a photo with a caption mimicking the influencer’s usual style, and published several Stories, mixing reused content with prominently displayed phishing links.
The campaign even included fabricated testimonials from supposed fans, further enhancing the sense of legitimacy and urgency around the fake giveaway.
According to the Report, while the video initially appeared convincing, subtle inconsistencies betrayed the fraud.
For example, the presence of a watermark from the free version of CapCut-a video editing app-stood out, as the influencer’s authentic content did not display such marks, suggesting the use of premium editing tools or different software.
Similarly, discrepancies in the style and formatting of subtitles, such as the use of white text on a black background instead of the influencer’s customary plain white subtitles, offered additional clues to the vigilant observer.
Phishing Site Targets Followers’ Banking Information
Followers who clicked the link in the compromised bio were redirected to a basic phishing website.
The landing page featured flashy visuals and prompts users to “claim their prize,” but actually served only to harvest personal data under the ruse of processing a nonexistent winnings claim.
Victims were typically asked to provide bank account details or to pay a small commission upfront-classic hallmarks of digital phishing schemes.
Without proper device or browser protections in place, users faced a significant risk of financial loss and identity theft.
Although the specifics of the breach remain under investigation, preliminary findings point to a SIM-swapping attack as the likely method of compromise.
In such attacks, cybercriminals trick a mobile telephone provider into issuing a new SIM card linked to the victim’s phone number, either by forging identification documents and visiting a physical store or by hacking into the victim’s mobile carrier account and issuing an eSIM remotely.
This enables attackers to intercept two-factor authentication codes sent via SMS, granting them direct access to the victim’s accounts and facilitating convincing identity theft when dealing with Instagram support and other digital services.
Once the SIM swap took place, the influencer lost all access to mobile services, as the legitimate SIM card was instantly deactivated.
The attackers then moved swiftly to seize control of the Instagram profile, deploying the multi-pronged phishing scheme before the breach could be detected and mitigated.
This incident underscores how technological advancements in artificial intelligence and social engineering are enabling cybercriminals to mount ever-more convincing and damaging attacks.
Social media users, especially public figures and influencers, are urged to secure their accounts with multi-factor authentication apps (not SMS-based), monitor for unusual activity, and work closely with their mobile providers to detect and block unauthorized SIM transfers.
As scammers deploy increasingly advanced methods, heightened digital vigilance has become essential.
Find this Story Interesting! Follow us on LinkedIn and X to Get More Instant updates
