New cryptocurrency theft case
Blockfence, which provides security services for crypto assets (virtual currency), announced on the 20th that a fake website for the community event “ETHDenver” had been created.
Another day, another scam.
This time the scammer targeted the @EthereumDenver website. Blockfence is here to protect you and fight scammers together: The scam contract was marked as “High Risk” by our ML algorithm and our partners at @GoplusSecurity pic.twitter.com/Jdtoz2Bgu4
—Blockfence (@blockfence_io) February 20, 2023
The fake website asks users to connect their Metamask wallets. According to Cointelegraph, who interviewed Blockfence’s CEO, the website was launched about six months ago, and so far, 2,800 wallets have been accessed, and 177 ETH (more than 40 million yen at the current exchange rate) has been stolen. It is said that
Criminals display the same button as usual when requesting a wallet connection. After pressing a button to connect and approve the transaction, the user’s assets are stolen.
ETHDenver is an event aimed at supporting the Web3 community to be at the center of Ethereum and blockchain innovation and shape the new world. The event will run from February 24th to March 5th.
This time, ETHDenver was exploited by creating a fake website without our knowledge. On the 20th, ETHDenver’s official Twitter account also posted, “There is a fake website that requests a wallet connection.” Websites with URLs beginning with “go-ethdenver” are not authentic.
Hello Fellow Bufficorns!!
Please be aware that there is a FAKE ETHDenver website that is asking for you to connect your wallet.
“Go-ETHDenver” is not us. pic.twitter.com/1dt4hYmfvO
— ETHDenver 🏔🦬🦄 (@EthereumDenver) February 20, 2023
At the time of writing this article, it was not possible to confirm, but it seems that the fake website was displayed at the top of the search results, as in the above tweet. The perpetrators even paid Google to ensure that their websites were prioritized at the top of search results.
Abuse of virtual currency
Scams and crimes targeting cryptocurrencies have been widespread for some time. Methods are also diversifying, such as hacking exchanges, hijacking official SNS, and face-to-face fraud.
connection: Beware of face-to-face fraud pretending to be a Web3 investor, explained by Trust Wallet
Last month, MetaMask alerted users to a new scam called “address poisoning.”
In order to increase convenience, Metamask allows users to copy and paste the wallet address in their transaction history with a single click, which is used by many users.
Many Web3 applications have such a function because the copy and paste function can prevent typos and send money, but Address Poisoning is said to be abusing this function.
connection: Metamask warns about new fraud “Address Poisoning”
What is Metamask
Ethereum cryptocurrency wallet. One of the most popular cryptocurrency wallets with a large number of users. It supports not only virtual currency but also NFT (non-fungible token).
connection: What is “MetaMask” | Virtual currency wallet used by over 20 million people per month