The Malicious Wallet Drainers Script: Millions Stolen from Users
A malicious script known as Wallet Drainers has been responsible for phishing campaigns in Google search results and Twitter ads, resulting in the theft of nearly $59 million in digital assets. Over the course of nine months, more than 63,000 victims fell prey to this scam. Wallet Drainers has been linked to over 10,000 websites, with the peak of its activity occurring in May, June, and November.
Ad Targeting and Phishing Tactics
The majority of the advertisements used by Wallet Drainers were related to cryptocurrency and NFT airdrops. Some even referenced popular blockchain projects like Dogecoin. These malicious ads employed regional targeting and page-switching tactics to bypass ad audits, making it difficult to identify them during the review process. In fact, a test showed that nine out of ten ads were phishing ads, with over 60% utilizing the wallet drainer script.
“Phishing ads employ redirect tricks to seem legit, like disguising links as official domains that actually lead to phishing sites.”
– Scam Sniffer experts
Warning from Ledger: Dangers of Using dapps
Ledger, a popular manufacturer of crypto hardware wallets, recently warned its customers about the dangers associated with using decentralized applications (dapps). This cautionary message was prompted by an attack on the supply chain. Attackers injected malicious javascript code into Ledger’s dapp Connect Kit library, which allowed them to automatically steal cryptocurrency and NFTs from connected accounts.
Rise in Phishing Attacks
According to Chainalysis, phishing attacks are on the rise. From May 2021 to December 2023, these scammers managed to steal a staggering $1 billion worth of cryptocurrency. Analysts have identified at least 1,013 addresses involved in targeted phishing. Phishing typically involves criminals sending deceptive emails or SMS messages, urging recipients to click on links or log into their accounts.
Hot Take: Protect Yourself from Phishing Scams
As the prevalence of phishing scams continues to grow, it’s crucial to take steps to protect yourself. Be cautious when clicking on links or providing personal information online. Double-check the legitimacy of websites and advertisements before taking any action. Utilize security measures like two-factor authentication and keep your devices and software up to date. By staying vigilant and informed, you can minimize the risk of falling victim to these malicious schemes.
By
By
By
By
By
By