Emblem Vault CEO Warns Zoom Users After Major Crypto Theft
Jake Gallen, CEO of Emblem Vault and a known NFT collector and podcaster, has issued a warning about a serious security breach that occurred during a Zoom call. According to a report by Cointelegraph, Gallen lost over $100,000 in cryptocurrency—including Bitcoin and Ether—after his computer was compromised in a sophisticated cyberattack.
The breach began on April 11 during a Zoom interview with a verified X account named “Tactical Investing,” which claimed to represent the CEO of Fraction Mining. During the call, the attacker—known online as “ELUSIVE COMET”—kept their video off and managed to install a piece of malware called “GOOPDATE” on Gallen’s system. The malware allowed the attacker to steal wallet credentials and drain various crypto holdings.
Gallen is now working with cybersecurity firm The Security Alliance (SEAL) to investigate the attack. SEAL researchers found that Zoom’s default settings allow meeting participants to request remote control access, which can be exploited if users are not careful. NFT historian Leonidas confirmed this setting and advised crypto users to disable remote access to prevent unauthorized system control.
The attackers also gained access to Gallen’s hardware wallet (Ledger), despite strong security practices, and later took control of his X account to send private messages aimed at compromising other individuals.
SEAL has linked the attack to a fraudulent venture capital operation called “Aureon Capital,” believed to be a front for ELUSIVE COMET. The group is suspected of stealing millions through similar methods, often using social engineering and fake identities to build trust with their targets.
Users who have had contact with Aureon Capital are encouraged to report the interaction to SEAL via their emergency Telegram hotline. The case highlights the growing threat of social engineering and platform vulnerabilities in the crypto space, particularly during remote communication sessions like Zoom calls.
