A Blockchain security firm has alerted users to a fresh phishing campaign. A cybersecurity company has issued a warning about a new phishing campaign aimed at MetaMask users.
The active phishing campaign employed emails to target MetaMask users and persuade them to share their passphrases. The company analyzed scam emails it received in late July to warn customers about the new fraud.
Crypto users are getting scammed by crypto-related phishing emails because the logos and headers look real, as well as instructions on how to comply with Know Your Customer (KYC) rules and how to check their wallets.
However, the message contains a number of warning signals. The use of misspellings and a phony sender email address were two of the most apparent red flags. Furthermore, to deliver the phishing emails, a fraudulent domain called metamaks.auction was used.
Social engineering attacks involve sending targeted emails to trick people into providing more personal information or clicking links to harmful sites that seek to steal cryptocurrencies.
On a similar note, the message was completely generic, suggesting that it came from an automated computer system. The firm also mentioned that there was no personalization in the message, which is another bad sign. When you hover over the call to action button, you get sent to a phony website that instructs you to input your seed phrases before sending you to MetaMask to empty your cryptocurrency wallets.
In June, researchers identified a situation in which a user’s concealed keys might be found unencrypted on a disk in a hijacked machine. Following the discovery, MetaMask patched its extension versions 10.11.3 and later. However, there was no mention of the new email phishing danger on MetaMask’s Twitter feed at the time of publication.
In late July, researchers warned of a new malware strain called Luca Stealer hitting the streets. The information thief runs on the Rust programming language and attacks Web3 infrastructure such as bitcoin wallets. In February, Mars Stealer was found to be malicious software designed to target MetaMask wallets.