- February 21, 2023
- Posted by: Subham Seth
- Category: ethereum, News
Highlights
- ETHDenver is the most recent victim of these hackers who persistently create fake Web3-enabled websites with the intention of stealing usersโ funds stored in their browser-based wallets.
- It makes a transaction request, and when the users accept it, the page performs its wrong work and steals the usersโ money.
- The last phishing victim of the red-flagged smart contract is a fake website for the famous Ethereum Denver conference, which took over $300,000 of Ether.
A hacker cloned the popular conferenceโs website on Tuesday and tried to make users connect their MetaMask wallets by mimicking the website. The heuristic website was first identified by Blockfence, a security company that came across the heinous website more than six months prior.
In a statement from Blockfence, the smart contract interacting with the wallets has checked into over 2,800 wallets and stolen over $30000.
ETHDenver Warns of Phony Website Scam Targeting Attendees
ETHDenver was also communicating with its Twitter page and, in particular, putting up a notification that the website in question is malicious. In their tweets, they stated the following: In their tweets, they stated the following:
App users today were warned that there is an impersonation underway โ a website designed to look like the ETHDenver official site and thatโs demanding the input of a wallet.
Blockfence CEO Omri Lahav said that users would invite their wallets by clicking on the โconnect walletโ button on MetaMask wallets. When a user opens a particular website, a transaction request is made and if granted, a bad code executes and embezzles the money from the user.
This incidence was identified by the Blockfence research team during their research on different activities taking place in the market. Lahav said that since its deployment in the middle of 2022, the smart contract running the scam has taken over 177 ETH.
Already, on February 24-25, when ETHDenver was to take place, the hackers had procured a Google ad that would redirect to the URL of the created website. It appeared in the Google search after the actual ETHDenver website, although it was a fake one.
NameCheap Discovers an Email Gateway Issue Targeting MetaMask Users
However, fraud and theft have not disappeared in the field of cryptocurrencies. Cryptocurrency is worth about $2. Hackers and scammers managed to steal $8 billion in 2022, and it only seems to be increasing.
Recently, NameCheap, a web hosting firm, was working with a third-party service that was used to send several unwanted emails that were specifically targeted to affect MetaMask users. There was a technicality that Namecheap referred to as an โemail gateway issueโ.
Add a comment
You must be logged in to post a comment.