A cryptocurrency phishing attack now targets MetaMask users visiting trusted and legitimate crypto data websites, such as CoinGecko and Etherscan, with malicious Bored Ape Yacht Club logo-bearing pop-ups.
(Photo : JUSTIN TALLIS/AFP via Getty Images)
An illustration picture taken in London on May 8, 2022, shows gold plated souvenir cryptocurrency Tether (USDT), Bitcoin and Etherium coins arranged beside a screen displaying a trading chart.
Crypto’s Bad Week
Even before hitting Friday the 13th, this week has been one of the worst for crypto enthusiasts, as per a news story by The Verge.
Stablecoins started being volatile, crashing their prices away from their fiat pegs. Not to mention that the crypto token, Luna, also lost its value by a hundred percent, collapsing its price to $0.
(Photo : by Chris McGrath/Getty Images)
People walk past the entrance of a cryptocurrency exchange office on April 16, 2021 in Istanbul, Turkey.
Oh, that’s not all. As if the crashing prices of most digital tokens weren’t enough, the crypto exchange service, Coinbase, had an outage as well. It prevented its users from accessing the giant platform, temporarily blocking access to features like trading.
New Crypto Phishing Attack Targets MetaMask Users
On top of that, the latest news on crypto exposes a massive crypto phishing attack that attempted to trick visitors of popular sites like Etherscan and CoinGecko, according to a recent report by CoinDesk.
In fact, the two crypto data sites, along with DexTools, have already issued a warning to their users, telling them to avoid opening the malicious phishing pop-ups on their sites.
CoinDesk stated in its report that the phishing attacks on various crypto sites are luring MetaMask users to connect their wallets to a malicious website.
(Photo : by NICOLAS ASFOURI/AFP via Getty Images)
(FILES) In this file photo taken on August 04, 2020, Prince, a member of the hacking group Red Hacker Alliance who refused to give his real name, uses his computer at their office in Dongguan, China’s southern Guangdong province.
The news outlet revealed that the domain of the phishing site boasts the logo of the massive non-fungible token or NFT collection that goes by the name Bored Ape Yacht Club.
However, as of writing, the website that targeted users of the crypto wallet service, MetaMask, has been taken down by the threat actors.
Crypto Phishing on Data Sites
Perhaps it comes as their scheme has already made it to various news stories, exposing their phishing campaign. What’s more, the sites where their pop-ups appear also officially warned against them already.
For instance, the founder of CoinGecko, Bobby Ong, himself has confirmed the latest phishing attack. He assured users of the giant crypto data site that they “are investigating the root cause of this attack to fix it as soon as possible.”
The CoinGecko co-founder also disclosed some information regarding the malicious pop-up on its site. Ong said that it “is most likely caused by a malicious ad script by Coinzilla, a crypto ad network.”
Meanwhile, Etherscan said in its recent tweet that it has already disabled “the said 3rd party integration.”
Interim we've taken immediate action to disable the said 3rd party integration on Etherscan.
— “The Etherscan” (@etherscan) May 13, 2022
Written by Teejay Boris