CoinGecko and Etherscan users were targets of phishing attacks yesterday. Those on the crypto data aggregator websites were prompted to connect their MetaMask wallet to the nftapes.win website.
CoinGecko tweeted a warning to its users to beware of any prompts asking them to connect their wallet to the site, claiming it was a scam.
Etherscan also rehashed this warning to its users, while revealing that it had disabled third-party integration into the platform immediately.
The websites have since updated their information, explaining the reason for the attack. Investigations show that the phishing code was embedded in the ad from a popular crypto advertising network, Coinzilla.
According to Coinzilla’s statement, the phishing attack lasted for less than one hour, and its team would “manually review and recreate all the creatives used by our clients” to avoid a future recurrence. It also mentioned that it would be working to identify the person behind the attack.
FrankResearcher, director of research at The Block, explained that the attacker “wanted to get token endorsements or trade through DEXs to their address.” Another crypto expert, Jon_HQ, expressed surprise that the attack worked, given its simplicity.
He advised those who might have interacted with the ad to revoke access immediately. The security expert also mentioned the need to use Adblockers and move valuable NFTs from any wallet signed into the ad.
Phishing attempts are on the rise in crypto
Phishing attacks have become quite common in the crypto space in recent months. With hackers perfecting ways to gain unauthorized access to users’ wallets, it has become more difficult to determine what is real and what is phishing.
Recently, Solana-based lifestyle Dapp, STEPN, was the victim of a phishing attack spotted by PeckShield. Popular crypto hardware wallet, Trezor, was also targeted in a phishing attempt that looked genuine.
Industry experts have pointed out that these hackers are now using social engineering strategies for phishing attacks. Unfortunately, this makes it difficult for victims to identify such attacks until they have lost their property.