As a seasoned crypto investor with years of experience navigating the digital jungle, I can’t help but feel a sense of deja vu when yet another project falls victim to phishing scammers. It seems like every time I turn around, there’s a new headline about some poor soul getting reeled in by these cyber piranhas.
Earlier today, the virtual reality project Decentraland’s X account fell victim to unauthorized activity, spreading phishing links.
Based on PeckShield’s warning, on September 19th, crypto swindlers hijacked Decentraland’s X account and spread misleading information about an unauthentic airdrop for their native token MANA. This scheme was later exposed as a phishing attempt aimed at the project’s substantial following of over 607,000 individuals.
Interestingly enough, even the scammers themselves blocked comments on their posts, justifying it as a means to thwart ‘potential harmful links.’
Initially appearing roughly at 1:50 am UTC, posts that have since been removed started circulating and advertised a harmful website disguised as Decentraland’s official platform. Users who visited launch-decentraland[.org] were lured into believing they could claim an airdrop by linking their digital wallets.
Normally, in this type of situation, users might be asked to approve a harmful cryptocurrency transaction. This action would give control of their wallet to an untrustworthy individual who could then empty any stored cryptocurrencies or other assets.
Following the removal of the first set of posts, two additional, comparable ones appeared, advertising a distinct site: token-decentraland.org. At the moment of writing, these newer posts are still active.
So far, it’s unknown exactly how many users have been impacted by this ongoing campaign, but PeckShield advises users to steer clear of interacting with Decentraland’s X account due to recent activity suggesting that the VR platform has not regained control over it yet.
Crypto space is the new hunting ground for phishing scammers
In recent times, many well-known cryptocurrency initiatives have fallen victim to scammers, with phishing schemes resulting in approximately $63 million in losses just in August. For example, last month, the Discord channel of Polygon was hacked and fraudulent links were shared, mirroring an earlier attack on the liquid staking platform Renzo. This pattern underscores a growing trend of cyber threats within the crypto community.
As a crypto investor, I’ve seen firsthand how quickly the market can swing – not even the big players are immune to its volatility. For instance, a substantial DAI investor recently suffered a staggering loss of $55 million in mere seconds. And it wasn’t just whales who felt the pinch; an NFT trader like myself lost over $145,000 worth of Bored Ape Yacht Club collectibles just months ago. It serves as a stark reminder that while the potential rewards can be immense, so too can the risks in this dynamic world of digital assets.
In every single one of these assaults, the targets have consistently executed harmful transactions, a tactic known among cybersecurity professionals as ‘consent-based phishing’. This deceptive practice has resulted in approximately $2.7 billion in financial losses since 2021, according to Chainalysis’ reports.
Most frequently, these fraudulent activities are found on social networking sites such as X and Telegram. According to a study by SlowMist, more than 80% of the comments below posts from authentic crypto ventures were found to contain phishing URLs.
With scams growing in complexity, it’s crucial now more than ever to remain alert. Cryptocurrency users should keep themselves updated and practice carefulness while engaging online.
To counteract the rising dangers, digital wallets such as MetaMask have taken action by incorporating enhanced safety measures designed to shield users from becoming targets of these attacks.
Read More
Sorry. No data so far.
2024-09-19 13:06