Cryptocurrency owners have once again been warned to be on their guard against scammers following the detection of a new phishing attack.
Visitors to a number of popular cryptocurrency websites, including Etherscan, CoinGecko, and DexTools, encounter suspicious pop-ups.
The attack appears to target those who own MetaMask cryptocurrency wallets, which allow users to access their crypto holdings on their mobile device or in a browser, and uses the logo of the famous group Bored Ape Yacht Club to try to prove its legitimacy.
Along with the Bored Ape logo, the pop-up asks the victim to “log in with MetaMask” in an attempt to trick them into thinking the ad is a legitimate part of the site. It aims to direct victims to a malicious domain that would see a user’s crypto wallet drained with no hope of recovery.
The affected sites were quick to take action, with Etherscan claiming to have disabled third-party integrations on its website and warning users not to confirm any transactions appearing in a pop-up window.
CoinGecko said it identified Coinzilla, an industry advertising network, as the source of the malicious pop-up, and removed it from its site as well.
The news is the latest in a long line of scams and fraudulent attacks targeting crypto owners, who now number in the tens of millions.
In March 2022, ESET discovered a scam campaign that used malicious apps distributed through fake websites to steal Bitcoins and other cryptocurrencies from unsuspecting users.
The malicious apps imitated popular cryptocurrency wallets including Metamask, Coinbase, Trust Wallet, TokenPocket, Bitpie, imToken, and OneKey, and the scammers even placed advertisements on legitimate websites with deceptive articles to promote fake sites websites that distributed the imitated wallet apps.
Earlier this year, hundreds of millions of dollars in cryptocurrency were also stolen from the Ronin network, which provides the “blockchain bridge” that powers the NFT game Axie Infinity.