It seems that MetaMask related phishing attacks are unfortunately becoming more common. The popular crypto analytics platforms CoinGecko and Etherscan have both issued a warning against an ongoing series of phishing attacks on their platforms.
New phishing attack
Both companies reportedly received unusual MetaMask pop-ups that would prompt them to connect their crypto wallets to the website. Both CoinGecko and Etherscan decided to investigate this.
Now it turns out that a new phishing attack is underway that is trying to access users’ funds. This by simply asking the users to integrate their crypto wallets through MetaMask once they access the official websites.
According to Etherscan, the hackers even managed to display phishing pop-ups through the third-party integration. Because of this, they advised investors not to confirm any trades currently being requested by MetaMask. This prevents funds from leaving the platform.
🚨 We’ve received reports of phishing popups via a 3rd party integration and are currently investigating.
Please be careful not to confirm any transactions that pop up on the website.
— Etherscan (@etherscan) May 13, 2022
Such attacks are relatively common
Such phishing attacks have been around for a long time. However, it varies enormously per market how much successful it is. Unfortunately, such attacks still appear to be successful within the crypto market and therefore occur regularly. It seems that they are even present in increasing numbers.
In the meantime, Etherscan has disabled the compromised third-party integration on its website to fix the problem.
The phishing attack reportedly masqueraded as a MetaMask pop-up banner shared via an online advertising agency. This allowed the attackers to easily reach a large audience.