Several well-known cryptocurrency statistics websites, such as CoinGecko, Etherscan, DeFi Pulse, and others, have reported instances of fraudulent pop-ups requesting users to link their MetaMask wallets for use on the site.
According to experts, this appears to be a phishing attack aimed at users of the MetaMask wallet.
The wallet is a software crypto wallet that enables access on phone or via a browser. The attack provides a link to the Bored Ape Yacht Club project, with an ape skull logo and an nftapes.win domain.
CoinGecko founder Bobby Ong told CoinDesk that the company is examining the core cause of the hack in order to resolve the issue. Ong believes the event was caused by a malicious ad script from Coinzilla, a crypto ad network.
Security Alert: If you are on the CoinGecko website and you are being prompted by your Metamask to connect to this site, this is a SCAM. Don’t connect it. We are investigating the root cause of this issue. pic.twitter.com/7vPfTAjtiU
— CoinGecko (@coingecko) May 13, 2022
Elsewhere, cryptocurrency website Etherscan has advised users not to confirm any transactions that appeared on the site.
Security Alert: If you are on the CoinGecko website and you are being prompted by your Metamask to connect to this site, this is a SCAM. Don’t connect it. We are investigating the root cause of this issue. pic.twitter.com/7vPfTAjtiU
— CoinGecko (@coingecko) May 13, 2022
Last year, Check Point Research had discovered a phishing attack that leveraged Google advertising to steal user credentials and deceive them into entering the attacker’s wallet so that any transactions they tried would be received at the attacker’s wallet.
Some Practices To Avoid Phishing Attacks
Experts have advised users to follow a few basic steps and look out for the tell-tale signs of a phishing mail or attack to avoid falling prey to such scams.
1] If the customer has received a mail from an unexpected source that…
Several well-known cryptocurrency statistics websites, such as CoinGecko, Etherscan, DeFi Pulse, and others, have reported instances of fraudulent pop-ups requesting users to link their MetaMask wallets for use on the site.
According to experts, this appears to be a phishing attack aimed at users of the MetaMask wallet.
The wallet is a software crypto wallet that enables access on phone or via a browser. The attack provides a link to the Bored Ape Yacht Club project, with an ape skull logo and an nftapes.win domain.
CoinGecko founder Bobby Ong told CoinDesk that the company is examining the core cause of the hack in order to resolve the issue. Ong believes the event was caused by a malicious ad script from Coinzilla, a crypto ad network.
Security Alert: If you are on the CoinGecko website and you are being prompted by your Metamask to connect to this site, this is a SCAM. Don’t connect it. We are investigating the root cause of this issue. pic.twitter.com/7vPfTAjtiU
— CoinGecko (@coingecko) May 13, 2022
Elsewhere, cryptocurrency website Etherscan has advised users not to confirm any transactions that appeared on the site.
Security Alert: If you are on the CoinGecko website and you are being prompted by your Metamask to connect to this site, this is a SCAM. Don’t connect it. We are investigating the root cause of this issue. pic.twitter.com/7vPfTAjtiU
— CoinGecko (@coingecko) May 13, 2022
Last year, Check Point Research had discovered a phishing attack that leveraged Google advertising to steal user credentials and deceive them into entering the attacker’s wallet so that any transactions they tried would be received at the attacker’s wallet.
Some Practices To Avoid Phishing Attacks
Experts have advised users to follow a few basic steps and look out for the tell-tale signs of a phishing mail or attack to avoid falling prey to such scams.
1] If the customer has received a mail from an unexpected source that…
