Nexo

Start Earning Up to 16% Interest Automatically

Learn More
Home » Hacks » Large-scale phishing campaign detected on Etherscan ads

Large-scale phishing campaign detected on Etherscan ads

by

The scale of crypto phishing ads has reached over $300 million stolen from over 324,000 victims through wallet drainers in 2023 alone.

Hacking group launches a phishing ad campaign against crypto websites.

Share this article

A widespread phishing campaign has been uncovered, targeting users of the popular Ethereum blockchain explorer Etherscan through malicious advertisements.

These ads, which appear on Etherscan and various other platforms, aim to lure unsuspecting users into connecting their cryptocurrency wallets to fraudulent websites, ultimately leading to the theft of their funds.

The phishing campaign was first brought to light by crypto X community member McBiblets, who identified several advertisements on Etherscan as wallet drainers.

According to the initial analysis, these ads redirect users to phishing websites designed to steal their cryptocurrency. Further investigations by Web3 anti-scam platform Scam Sniffer revealed that the malicious advertisements had spread beyond Etherscan, appearing on popular search engines such as Google, Bing, and DuckDuckGo, as well as the social media platform X.

“Etherscan aggregates ads from platforms like Coinzilla and Persona, where insufficient filtering could lead to exposure to phishing attempts,” Scam Sniffer noted.

The wallet drainer scam operates by enticing users to connect their crypto wallets to fake websites. Once the wallet is linked, the scammer gains the ability to withdraw funds into their own wallet addresses without requiring user authentication or permission.highlighting the potential lack of oversight from advertisement aggregators as a contributing factor to the widespread nature of the phishing campaign.

Pseudonymous SlowMist CISO (chief information security officer) 23pds also issued caution against the phishing ads on Etherscan, urging users to be careful against such ads.

While the infamous cyber phishing organization Angel Drainer is suspected of orchestrating this ongoing phishing campaign, concrete evidence regarding the scammers’ identity remains elusive at present.

The scale and impact of crypto phishing scams have been significant, with nearly $300 million stolen from over 324,000 victims through wallet drainers in 2023 alone. Scam Sniffer’s report also highlights the resilience of these “phishing gangs,” noting that even when drainers are shut down, scammers often relocate their operations to other platforms that continue to provide services for their illicit activities.

Share this article

The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representation or warranty as to the timeliness, completeness, or accuracy of any information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not give personalized investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may become outdated, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update any outdated, incomplete, or inaccurate information.

Crypto Briefing may augment articles with AI-generated content created by Crypto Briefing’s own proprietary AI platform. We use AI as a tool to deliver fast, valuable and actionable information without losing the insight - and oversight - of experienced crypto natives. All AI augmented content is carefully reviewed, including for factural accuracy, by our editors and writers, and always draws from multiple primary and secondary sources when available to create our stories and articles.

You should never make an investment decision on an ICO, IEO, or other investment based on the information on this website, and you should never interpret or otherwise rely on any of the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice on an ICO, IEO, or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sales, securities, or commodities.

See full terms and conditions.