Etherscan, CoinGecko warn against ongoing MetaMask phishing attacks

189
SHARES
1.5k
VIEWS

Popular crypto analytics platforms Etherscan and CoinGecko have issued alerts against an ongoing phishing attack on their platforms in parallel. Firms began investigating the attack after several users reported unusual MetaMask pop-ups prompting users to connect their crypto wallets to the website.

Based on information reported by analytics firms, the latest phishing attacks attempt to gain access to users’ funds by requesting to integrate their crypto wallets through MetaMask after accessing official websites.

READ ALSO

Etherscan further revealed that attackers managed to display phishing pop-ups through third-party integrations and advised investors to avoid verifying any transactions requested by MetaMask.

Pointing to a possible cause of the attack, @Noedel19, a member of Crypto Twitter, linked the ongoing phishing attacks to an agreement with an advertising and marketing agency, Coinzilla, which stated that “any website that uses Coinzilla ads” Yes, it is compromised.”

Compromised CoinZilla Source Code With Phishing Links. Source: @Noedel19

The screenshots shared below show an automated pop-up from MetaMask asking to join with a link that is falsely portrayed as Bored Ape Yacht Club’s (BAYC) non-fungible token (NFT) offering.

CoinGecko website showing fake Metamask pop-up. Source: @Noedel19

On May 4, Cointelegraph warned readers about a rise in app-themed airdrop phishing scams, which is further corroborated by the latest warnings issued by Etherscan and CoinGecko.

While Coinzilla’s official confirmation is still underway, @Noedel19 suspects that all companies that have advertising integrations with Coinzilla are at risk of similar attacks, with their users getting pop-ups asking for MetaMask integration.

As a primary means of damage control, Etherscan has disabled the compromised third-party integrations on its website.

Coinzilla has yet to respond to Cointelegraph’s request for comment.

related: Bored app Yacht Club NFT stolen in Instagram phishing attack

The team behind BAYC recently warned investors about an attack when their official Instagram account was discovered by hackers.

As Cointelegraph reported on April 25, hackers were able to access the official Instagram account of BAYC. The hackers then contacted BAYC’s Instagram followers and shared links to the fake airdrops.

Users who had connected their MetaMask wallet to the scam website were later removed from their NFT app. unconfirmed report suggest That around 100 NFTs were stolen during the phishing attack.