Fraudulent Crypto Browser Extension Redirects to a Fake Metamask Domain

Fraudulent Crypto Browser Extension Redirects to a Fake Metamask Domain
фото показано с : news.bitcoin.com

2020-12-7 13:15

A crypto intelligence firm has raised red flags about an increasing flow of comments in the crypto community about an ongoing phishing campaign, which is stealing funds from people who install a malicious browser extension.

Chrome Browser Extension Is Redirecting Crypto Users to a Fake Metamask Site

According to an alert published by Ciphertrace, since December 2, 2020, they have been noticing “an uptick of alerts and comments” about crypto funds stolen via a Chrome browser extension posing as the ethereum (ETH)-based wallet Metamask.

The fraudulent extension redirects victims to installmetamask.com, which is not an official site of Metamask. Per Whois information, the web domain was registered on November 29, 2020. Ciphertrace found out the first mention in Twitter of the fraudulent domain from a user who asked Metamask team about the site’s authenticity.

The screenshots taken to the fake MetaMask site mirrors the real one:

Fraudulent site’s screenshot Fraudster Is Paying for Ads to Promote Phishing Site

Moreover, U.S.-based Ciphertrace posted an update on December 3, 2020, detailing that phisher behind Metamask’s fake extension keeps buying sponsored ads on Google, which appear when people search for “metamask” term.

This time, sponsored ads have been relying on other domain names by attempting to impersonate Metamask. One of the domains (meramarks.io), however, is offline as of press time.

if (!window.GrowJs) { (function () { var s = document.createElement('script'); s.async = true; s.type = 'text/javascript'; s.src = 'https://bitcoinads.growadvertising.com/adserve/app'; var n = document.getElementsByTagName("script")[0]; n.parentNode.insertBefore(s, n); }()); } var GrowJs = GrowJs || {}; GrowJs.ads = GrowJs.ads || []; GrowJs.ads.push({ node: document.currentScript.parentElement, handler: function (node) { var banner = GrowJs.createBanner(node, 31, [300, 250], null, []); GrowJs.showBanner(banner.index); } });

The firm has been in contact with the crypto wallet company about the situation. Also, Metamask issued the following warning through their official Twitter account:

@Google is allowing a phisher to buy sponsored ads on their search results. When using crypto, try to use direct links, and if you need to use search, watch out for sponsored links.

Back on January 02, 2020, Google reversed its decision to ban the Metamask app from the Play Store, as per request from the crypto community.

In 2019, the company argued that its strict content policy on apps that expose users to “deceptive or harmful financial products and services” was a reason for the ban.

Have you or a friend been a victim of similar crypto-related phishing scams? Let us know in the comments section below.

The post Fraudulent Crypto Browser Extension Redirects to a Fake Metamask Domain appeared first on Bitcoin News.

Similar to Notcoin - Blum - Airdrops In 2024

origin »

Emerald Crypto (EMD) на Currencies.ru

$ 0 (+0.00%)
Объем 24H $0
Изменеия 24h: 0.00 %, 7d: 4.67 %
Cегодня L: $0 - H: $0
Капитализация $0 Rank 99999
Цена в час новости $ 0.0095806 (-100%)

crypto extension browser phishing campaign community ongoing

crypto extension → Результатов: 126


Фото:

Browser Extension Aims to Identify Cryptocurrency Tribalism on Twitter

A new browser extension called “Coinflict of Interest” was recently launched on GitHub and it aims to solve the problem of transparency on Crypto Twitter. Created by an open-source developer, Coinflict of Interest exposes bias towards certain coins among well-known figures in the crypto industry, helping people differentiate between truthful and sponsored content.

2019-3-27 09:40


QuadrigaCX Is Still Looking For The Millions Of Crypto Assets Missing, Earning Another Court Extension

QuadrigaCX Is Still Looking For The Millions Of Crypto Assets That They’ve Lost, Earning Them Another Extension In Court QuadrigaCX’s court case for the retribution of funds to consumers has gone on for months, and they have already been granted a 30-day stay to protect them from creditors as they find the funds hidden amongst […]

2019-3-6 02:16


Фото:

New Web Extension Allows Users to Tip on Twitter With Bitcoin

Tippin, a Lightning Network (LN) platform, launched a Chrome extension that enables Google browser users to send Bitcoin payments on Twitter, EJ Insight reported on February 19, 2019. Lightning Twitter Tips Despite the incredibly cold crypto winter that has only recently started to slow down, the push for mainstream crypto adoption is also experiencing someRead MoreRead More.

2019-2-21 00:00


Binance Labs-Backed Nym Technologies Crypto Startup Wants to Make Everything Anonymous

Nym Technologies has a reputation for mixing innovative technologies, and the company's leading Developer, David Stainton has a very colorful approach when it comes to talking about it and his career, by extension: “To be honest, we have been fucking up this Mixnet concept for roughly 39 years.” There's a lot be said that is […]

2018-12-16 02:41


Фото:

U.S. SEC Delays Decision on VanEck's Bitcoin ETF Until February 2019

The U. S. Securities and Exchange Commission (SEC) has postponed its decision to approve or disapprove the VanEck/SolidX bitcoin exchange-traded fund (ETF). Per an official document published by the agency, the new deadline to review the VanEck proposal has been shifted to February 27, 2019, which the regulator claims would afford it the time needed to review the potential rule change further.

2018-12-7 19:56


The Crypto Exchange Heist Case Continues: Mt Gox Trustee Attempts To Extend Rehabilitation Deadline

The Case Continues: Mt Gox Trustee Seeks To Extend Civil Rehabilitation Claims Deadline Sometimes, it looks like the Mt Gox story won’t ever end. Nobuaki Kobayashi, a trustee of Mt Gox, a collapsed Bitcoin exchange, is currently asking for an extension of the deadline in the process of filing for civil rehabilitation claims. He wants […]

2018-11-26 00:31


В Chrome Web Store появилось расширение для безопасных транзакций Waves Keeper

Разработчики блокчейн-платформы Waves выпустили анонсированное ранее браузерное расширение Waves Keeper для безопасного подписания транзакций. #Waves Keeper is now available in Chrome Web Store! It’s a browser extension designed to manage your keys and enable you to confirm transactions online without exposing any sensitive information to the web: https://t.

2018-11-19 15:46


Target and Google Official Twitter Accounts Hacked, Used for Crypto Scams

In what is becoming an emerging trend, Twitter accounts of popular brands are being hacked in an attempt to scam unsuspecting users out of their cryptocurrencies. Target and Google are two high profile targets that have seen their accounts taken over by hackers who, in turn, have used them to scam followers by advertising fraudulent crypto giveaways.

2018-11-15 23:40


XLM Stands Up With Real World Application

Coming in at number 6 as one of the biggest cryptocurrencies in the world is Stellar. Adoption is increasing and the crypto is currently in the green after yesterday’s market crash. A US-based qualified custodian, Prime Trust recently announced that they will support Stellar while it is being actively used as the network of choice to build platforms on due to quick speeds and being trustworthy.

2018-10-12 21:30


Фото:

Cyber Criminals Are Finding Ways To Steal Your Cryptos

You stored your Bitcoin private keys (CRYPTO: BTC) in a safety deposit box so you should be good, right? Not so fast. Criminals are getting more manipulative in how they access your cryptos. Hacked Browsers Can Steal Your Passwords This week, a Google Chrome extension for file-sharing service MEGA was hacked by cyber criminals who are potentially stealing private keys and login passwords, among other information.

2018-9-8 23:00