Etherscan, CoinGecko warn against ongoing MetaMask phishing attacks

Popular crypto analytics platforms Etherscan and CoinGecko have parallelly issued an alert against an ongoing phishing attack on their platforms. The firms began investigating the attack after numerous users reported unusual MetaMask pop-ups prompting users to connect their crypto wallets to the website.  Based on the information disclosed by the analytics firms, the latest phishing attack attempts to gain access to users’ funds by requesting to integrate their crypto wallets via MetaMask once they access the official websites. Security Alert: If you are on the CoinGecko website and you are…

Read More

OpenSea Discord server hacked, users warned to be vigilant of phishing scams

Nonfungible token (NFT) marketplace OpenSea suffered a server breach on its main Discord channel, with hackers posting fake “Youtube partnership” announcements. A screenshot shared Friday shows fake collaboration news, accompanied by a link to a phishing site. OpenSea Support’s official Twitter account tweeted that the marketplace’s Discord server was breached Friday morning and warned users not to click the channel. Do not click links in our Discord. We are continuing to investigate this situation and will share information as we have it. https://t.co/jgtHcXifer — OpenSea Support (@opensea_support) May 6, 2022 The…

Read More

Ape-themed airdrop phishing scams are on the rise, experts warn

Cybersecurity experts identified and disclosed the rising popularity of airdrop phishing among crypto and nonfungible token (NFT) scammers. Airdrops serve as an essential marketing tool for crypto projects, which involves sending free cryptocurrency tokens or NFTs to promote awareness among investors. However, a new report released by Malwarebytes Labs highlighted an alarming rise in airdrop phishing attempts as scammers try to cash in on the hype around Yuga Labs’ BAYC Ape-related NFT collection. Airdrop phishing: what is it, and how is my cryptocurrency at risk? https://t.co/kWG09l06fi — Malwarebytes (@Malwarebytes) May…

Read More

Bored Ape Yacht Club NFTs stolen in Instagram phishing attack

As told by Bored Ape Yacht Club (BAYC) developers on Monday, hackers breached the popular nonfungible token, or NFT, collection’s official Instagram page and shared links to a fake airdrop with the project’s followers. Crypto enthusiasts who connected their MetaMask wallets to the scam website were subsequently drained of their Ape NFTs. It appears that the attack was planned to coincide with the one-year anniversary of the launch of the BAYC collection, thus increasing the “perceived credibility” of the phishing link. Unconfirmed reports on social media indicate that approximately 100…

Read More

MetaMask warns Apple users over iCloud phishing attacks

ConsenSys-owned crypto wallet provider MetaMask has sent out a warning to the community regarding Apple iCloud phishing attacks. The security issue for iPhone, Mac, and iPad users is related to default device settings which see a user’s seed phrase or “password-encrypted MetaMask vault” stored on the iCloud if the user has enabled automatic backups for their app data. In a Twitter thread posted on April 18, MetaMask noted that users run the risk of losing their funds if their Apple password “isn’t strong enough” and an attacker is able to phish…

Read More

Trezor investigates potential data breach as users cite phishing attacks

Cryptocurrency hardware wallet provider Trezor has begun investigating a possible data breach that may have compromised users’ email addresses and other personal information.  Earlier today, on Apr. 3, several users from the Crypto Twitter community warned about an ongoing email phishing campaign specifically targeting Trezor users via their registered email addresses. Hey trezor, are you aware of a phishing campaign going on? I just received this email with my actual email on it. It looked very legit. pic.twitter.com/GF0Od6llr2 — josearkaos ⚡️ (@josearkanos) April 3, 2022 In the ongoing attack, several…

Read More

Rare Bears Discord phishing attack nabs $800K in NFTs

Recently launched NFT project, Rare Bears, was hit with an attack, after a hacker posted a phishing link in the project’s Discord channel, stealing nearly $800,000 in NFTs. Analysis from blockchain security firm Peckshield detailed that the attacker was able to steal 179 NFTs, including Rare Bears and other NFTs from various collections, including CloneX, Azuki, a “mfer” from artist sartoshi, and 6 LAND tokens used for The Sandbox metaverse. According to on-chain analysis, most of the NFTs were sold, netting the hacker 286 ETH, worth over $795,500, most of…

Read More

Opensea phishing scandal reveals a security need across the NFT landscape

Despite the ongoing volatility plaguing the digital asset sector, one niche that has undoubtedly continued to flourish is the nonfungible token (NFT) market. This is made evident by the fact that a growing number of mainstream mover and shakers including the likes of Coca-Cola, Adidas, the New York Stock Exchange (NYSE) and McDonalds, among many others, have made their way into the burgeoning Metaverse ecosystem in recent months. Also, owing to the fact that over the course of 2021 alone, global NFT sales topped out at $40 billion, many analysts…

Read More

OpenSea planned upgrade stalls as phishing attack targets NFT migration

Just yesterday, OpenSea announced a smart contract upgrade, which requires users to migrate their listed NFTs from Ethereum (ETH) blockchain to a new smart contract. As a direct result of the upgrade, users that don’t migrate over from Ethereum risk losing their old, inactive listings — which currently require no gas fees for migration. Major nonfungible token (NFT) marketplace OpenSea has reportedly fallen victim to an ongoing phishing attack within hours after announcing a week-long planned upgrade to delist inactive NFTs on the platform.  However, the urgency and short deadline…

Read More