Claim Giveaway Token Proof of Reserve

Top cryptocurrency news: Blockchain private security firm issues a fresh alert of MetaMask phishing campaign

01-Aug-2022 By: Rohit Tripathi
Top cryptocurrency n

A cybersecurity firm has issued alerts on a fresh phishing effort 

That is going after users of the well-known cryptocurrency wallet MetaMask.

According to a July 28 article by Halborn's technical education specialist Luis Lubeck, the active phishing effort utilized emails to target MetaMask users and fool them into handing away their passwords.

The firm examined the phishing emails it had received in late July to alert users to the new scam. At first sight, the email appears to be legitimate, with a MetaMask header and logo, as well as messages informing users about KYC laws and how to verify their wallets.

However, Halborn pointed out multiple red flags in the statement. Two of the most noticeable were spelling mistakes and a forged sender's email address. Furthermore, the phishing emails were sent through a bogus site named 'metamaks.auction'.

Phishing is a social engineering assault that uses targeted emails to trick victims into disclosing additional personal information or clicking links to malicious websites that try to steal cryptocurrency.

Another red flag, according to the firm, was the lack of personalization in the message. Hovering over the call to action button displays a fraudulent link to a bogus website that encourages users to input their seed phrases before forwarding them to MetaMask to empty their cryptocurrency wallets.

In June, Halborn researchers identified an instance in which a user's private keys were discovered unencrypted on a drive in a hacked PC. Following the discovery, MetaMask fixed its extension versions 10.11.3 and later.

However, at the time of writing, there was no mention of the new email phishing threat on MetaMask's Twitter account.

In late July, security experts issued a warning about the appearance of a new malware variant dubbed Luca Stealer in the wild. The information stealer was created in the Rust programming language and is designed to target Web3 infrastructure such as cryptocurrency wallets. In February, a similar malware named Mars Stealer was identified targeting MetaMask wallets.

Read also: Top cryptocurrency news: Celsius confirms client emails leaked, increases the risk of phishing attack


WHAT'S YOUR OPINION?
Related News
Related Blogs
`